Debian Package Tracker

general

source: ocaml (source, ocaml)
version: 4.05.0-9
maintainer: Debian OCaml Maintainers (archive) [DMD]
uploaders: Ralf Treinen [DMD] – Mehdi Dogguy [DMD] – Ximin Luo [DMD] – Stéphane Glondu [DMD] – Samuel Mimram [DMD]
arch: all any
std-ver: 4.0.0
VCS: Git (Browse)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 3.12.1-4
o-o-sec: 3.12.1-4+deb7u1
oldstable: 4.01.0-5
stable: 4.02.3-9
testing: 4.02.3-10
unstable: 4.05.0-9

versioned links

3.12.1-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.12.1-4+deb7u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.01.0-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.02.3-9: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.02.3-10: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.05.0-9: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

ocaml
ocaml-base
ocaml-base-nox
ocaml-compiler-libs
ocaml-interp
ocaml-mode
ocaml-nox
ocaml-source

action needed

lintian reports 25 errors and 34 warnings

high

Lintian reports 25 errors and 34 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2014-07-03 Last update: 2017-09-20 01:18

1 security issue in sid

high

There is 1 open security issue in sid.

1 important issue:

CVE-2017-9779: OCaml compiler allows attackers to have unspecified impact via unknown vectors, a similar issue to CVE-2017-9772 "but with much less impact."

Please fix it.

Created: 2017-09-08 Last update: 2017-09-16 01:22

2 security issues in wheezy

high

There are 2 open security issues in wheezy.

1 important issue:

CVE-2017-9779: OCaml compiler allows attackers to have unspecified impact via unknown vectors, a similar issue to CVE-2017-9772 "but with much less impact."

1 issue skipped by the security teams:

CVE-2012-0839: OCaml 3.12.1 and earlier computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

Please fix them.

Created: 2015-07-12 Last update: 2017-09-16 01:22

1 security issue in buster

high

There is 1 open security issue in buster.

1 important issue:

CVE-2017-9779: OCaml compiler allows attackers to have unspecified impact via unknown vectors, a similar issue to CVE-2017-9772 "but with much less impact."

Please fix it.

Created: 2017-09-08 Last update: 2017-09-16 01:22

Fails to build during reproducibility testing

normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2017-08-30 Last update: 2017-09-23 01:39

The package has not entered testing even though the delay is over

normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2017-09-22 Last update: 2017-09-23 01:26

2 bugs tagged patch in the BTS

normal

The BTS contains patches fixing 2 bugs, consider including or untagging them.

Created: 2017-08-12 Last update: 2017-09-23 01:15

Multiarch hinter reports 1 issue(s)

low

There are issues with the multiarch metadata for this package.

ocaml-source could be marked Multi-Arch: foreign

Created: 2016-09-14 Last update: 2017-09-23 01:40

2 ignored security issues in jessie

low

There are 2 open security issues in jessie.

2 issues skipped by the security teams:

CVE-2015-8869: OCaml before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct buffer overflow attacks or obtain sensitive information as demonstrated by a long string to the String.copy function.
CVE-2017-9779: OCaml compiler allows attackers to have unspecified impact via unknown vectors, a similar issue to CVE-2017-9772 "but with much less impact."

Please fix them.

Created: 2016-04-29 Last update: 2017-09-16 01:22

1 ignored security issue in stretch

low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2017-9779: OCaml compiler allows attackers to have unspecified impact via unknown vectors, a similar issue to CVE-2017-9772 "but with much less impact."

Please fix it.

Created: 2017-09-08 Last update: 2017-09-16 01:22

Standards version of the package is outdated.

wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.1.0 instead of 4.0.0).

Created: 2017-07-13 Last update: 2017-09-16 01:04

testing migrations

excuses:
- Migration status: OK: Will attempt migration (Any information below is purely informational)
- 7 days old (needed 5 days)
- Piuparts tested OK - https://piuparts.debian.org/sid/source/o/ocaml.html
- Valid candidate

news

[rss feed]

[2017-09-15] Accepted ocaml 4.05.0-9 (source) into unstable (Ximin Luo)
[2017-09-14] Accepted ocaml 4.05.0-8 (source) into experimental (Ximin Luo)
[2017-07-31] Accepted ocaml 4.05.0-7 (source) into experimental (Ximin Luo)
[2017-07-29] Accepted ocaml 4.05.0-6 (source) into experimental (Ximin Luo)
[2017-07-23] Accepted ocaml 4.05.0-5 (source) into experimental (Ximin Luo)
[2017-07-23] Accepted ocaml 4.05.0-4 (source) into experimental (Ximin Luo)
[2017-07-23] Accepted ocaml 4.05.0-3 (source) into experimental (Ximin Luo)
[2017-07-23] Accepted ocaml 4.05.0-2 (source) into experimental (Ximin Luo)
[2017-07-18] ocaml 4.02.3-10 MIGRATED to testing (Debian testing watch)
[2017-07-17] Accepted ocaml 4.05.0-1 (source) into experimental (Ximin Luo)
[2017-07-13] Accepted ocaml 4.02.3-10 (source amd64 all) into unstable (Stéphane Glondu)
[2017-03-04] Accepted ocaml 4.04.0-2 (source) into experimental (Ximin Luo)
[2017-03-03] Accepted ocaml 4.04.0-1 (source) into experimental (Ximin Luo)
[2017-01-01] ocaml 4.02.3-9 MIGRATED to testing (Debian testing watch)
[2016-12-22] Accepted ocaml 4.02.3-9 (source amd64 all) into unstable (Mehdi Dogguy)
[2016-11-12] ocaml 4.02.3-8 MIGRATED to testing (Debian testing watch)
[2016-11-06] Accepted ocaml 4.02.3-8 (source amd64 all) into unstable (Mehdi Dogguy)
[2016-11-03] Accepted ocaml 4.03.0-5 (source) into experimental (Ximin Luo)
[2016-11-02] Accepted ocaml 4.03.0-4 (source) into experimental (Ximin Luo)
[2016-11-02] Accepted ocaml 4.03.0-3 (source) into experimental (Ximin Luo)
[2016-10-28] Accepted ocaml 4.03.0-2 (source) into experimental (Ximin Luo)
[2016-10-20] Accepted ocaml 4.03.0-1 (source amd64 all) into experimental (Ximin Luo)
[2016-07-21] ocaml 4.02.3-7 MIGRATED to testing (Debian testing watch)
[2016-07-15] Accepted ocaml 4.02.3-7 (source) into unstable (Ralf Treinen)
[2016-05-11] Accepted ocaml 3.12.1-4+deb7u1 (source i386 all) into oldstable (signed by: Thorsten Alteholz)
[2016-02-22] ocaml 4.02.3-6 MIGRATED to testing (Debian testing watch)
[2016-02-16] Accepted ocaml 4.02.3-6 (source amd64 all) into unstable (Stéphane Glondu)
[2015-11-01] ocaml 4.02.3-5 MIGRATED to testing (Britney)
[2015-10-20] Accepted ocaml 4.02.3-5 (source amd64 all) into unstable (Stéphane Glondu)
[2015-10-18] Accepted ocaml 4.02.3-4 (source amd64 all) into unstable (Mehdi Dogguy)

bugs [bug history graph]

all: 18 19
RC: 0
I&N: 9
M&W: 9 10
F&P: 0

links

homepage
lintian (25, 34)
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 4.04.0-2ubuntu3
4 bugs
patches for 4.04.0-2ubuntu3