Debian Package Tracker

general

source: paramiko (main)
version: 2.4.0-1
maintainer: Jeremy T. Bouse [DMD]
uploaders: Guido Guenther [DMD]
arch: all
std-ver: 4.1.3
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.7.7.1-3.1
o-o-bpo: 1.10.1-1~bpo70+1
oldstable: 1.15.1-1
stable: 2.0.0-1
testing: 2.4.0-1
unstable: 2.4.0-1

versioned links

1.7.7.1-3.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.10.1-1~bpo70+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.15.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.0.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.4.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

paramiko-doc
python-paramiko
python3-paramiko

action needed

Debci reports failed tests (log) high

Debci reports test failures (log).

The tests ran in 0h 0m 34s

Last run: 2018-08-23 00:30:40

Previous status: fail

Created: 2018-03-08 Last update: 2018-08-28 08:44

A new upstream version is available: 2.4.1 high

A new upstream version 2.4.1 is available, you should consider packaging it.

Created: 2018-08-17 Last update: 2018-08-28 01:36

1 security issue in buster high

There is 1 open security issue in buster.

1 important issue:

CVE-2018-7750: transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.

Please fix it.

Created: 2018-03-14 Last update: 2018-06-02 08:03

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2018-7750: transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.

Please fix it.

Created: 2018-03-14 Last update: 2018-06-02 08:03

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2018-07-26 Last update: 2018-08-28 06:10

lintian reports 2 warnings normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2018-05-07 Last update: 2018-05-07 07:46

Multiarch hinter reports 1 issue(s) low

There are issues with the multiarch metadata for this package.

paramiko-doc could be marked Multi-Arch: foreign

Created: 2016-09-14 Last update: 2018-08-28 06:35

1 ignored security issue in stretch low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2018-7750: transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.

Please fix it.

Created: 2018-03-14 Last update: 2018-06-02 08:03

1 ignored security issue in jessie low

There is 1 open security issue in jessie.

1 issue skipped by the security teams:

CVE-2018-7750: transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.

Please fix it.

Created: 2018-03-14 Last update: 2018-06-02 08:03

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.2.1 instead of 4.1.3).

Created: 2018-04-16 Last update: 2018-08-26 08:17

news

[rss feed]

[2018-03-13] paramiko 2.4.0-1 MIGRATED to testing (Debian testing watch)
[2018-03-07] Accepted paramiko 2.4.0-1 (source all) into unstable (Jeremy T. Bouse)
[2016-06-14] paramiko 2.0.0-1 MIGRATED to testing (Debian testing watch)
[2016-06-09] Accepted paramiko 2.0.0-1 (source all) into unstable (Jeremy T. Bouse)
[2016-04-18] paramiko 1.16.0-1 MIGRATED to testing (Debian testing watch)
[2016-04-11] Accepted paramiko 1.16.0-1 (source all) into unstable (Jeremy T. Bouse)
[2015-10-31] paramiko 1.15.3-1 MIGRATED to testing (Britney)
[2015-10-26] Accepted paramiko 1.15.3-1 (source all) into unstable (Jeremy T. Bouse)
[2015-07-14] paramiko 1.15.2-1 MIGRATED to testing (Britney)
[2015-07-08] Accepted paramiko 1.15.2-1 (source all) into unstable (Jeremy T. Bouse)
[2014-09-29] paramiko 1.15.1-1 MIGRATED to testing (Britney)
[2014-09-23] Accepted paramiko 1.15.1-1 (source all) into unstable (Jeremy T. Bouse)
[2014-09-03] paramiko 1.14.1-1 MIGRATED to testing (Britney)
[2014-08-29] Accepted paramiko 1.14.1-1 (source all) into unstable (Jeremy T. Bouse)
[2014-06-15] paramiko 1.14.0-2 MIGRATED to testing (Debian testing watch)
[2014-06-04] Accepted paramiko 1.14.0-2 (source all) (Jeremy T. Bouse)
[2014-05-27] paramiko 1.14.0-1 MIGRATED to testing (Debian testing watch)
[2014-05-22] Accepted paramiko 1.14.0-1 (source all) (Jeremy T. Bouse)
[2013-07-23] paramiko 1.10.1-1 MIGRATED to testing (Debian testing watch)
[2013-07-13] Accepted paramiko 1.10.1-1 (source all) (Jeremy T. Bouse)
[2012-11-26] paramiko 1.7.7.1-3.1 MIGRATED to testing (Debian testing watch)
[2012-11-20] Accepted paramiko 1.7.7.1-3.1 (source all) (Michael Gilbert)
[2012-07-20] paramiko 1.7.7.1-3 MIGRATED to testing (Debian testing watch)
[2012-07-09] Accepted paramiko 1.7.7.1-3 (source all) (Jeremy T. Bouse)
[2012-07-09] Accepted paramiko 1.7.7.1-2.2 (source all) (Salvatore Bonaccorso)
[2012-07-05] Accepted paramiko 1.7.7.1-2.1 (source all) (Luk Claes) (signed by: Daniel Baumann)
[2011-10-13] paramiko 1.7.7.1-2 MIGRATED to testing (Debian testing watch)
[2011-10-02] Accepted paramiko 1.7.7.1-2 (source all) (Jeremy T. Bouse)
[2011-06-11] paramiko 1.7.7.1-1 MIGRATED to testing (Debian testing watch)
[2011-06-01] Accepted paramiko 1.7.7.1-1 (source all) (Jeremy T. Bouse)

bugs [bug history graph]

all: 19 22
RC: 2
I&N: 14 17
M&W: 2
F&P: 0
patch: 1

links

homepage
lintian (0, 2)
buildd: logs, clang, reproducibility
popcon
debci
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.0.0-1ubuntu1
6 bugs (1 patch)
patches for 2.4.1-0ubuntu2