Debian Package Tracker

general

source: pyopenssl (main)
version: 19.1.0-2
maintainer: Sandro Tosi (DMD)
uploaders: Debian Python Modules Team (archive) [DMD]
arch: all
std-ver: 4.4.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.14-1
oldstable: 16.2.0-1
old-bpo: 19.0.0-1~bpo9+1
stable: 19.0.0-1
testing: 19.1.0-2
unstable: 19.1.0-2

versioned links

0.14-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
16.2.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
19.0.0-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
19.0.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
19.1.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

python-openssl-doc
python3-openssl (1 bugs: 0, 1, 0, 0)

action needed

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 19.1.0-3, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 8df007875d10d250d96c23a62d5cee3e3bd55442
Author: Ondřej Nový <onovy@debian.org>
Date:   Thu Sep 24 08:55:54 2020 +0200

    d/control: Update Vcs-* fields with new Debian Python Team Salsa layout

commit 7f7940096319a382ac769cb0e497959a584d1b22
Merge: 20fba30 9078b6b
Author: Jelmer Vernooĳ <jelmer@debian.org>
Date:   Sun May 10 15:28:12 2020 +0000

    Merge branch 'lintian-fixes' into 'master'
    
    Fix some issues reported by lintian
    
    See merge request python-team/modules/pyopenssl!2

commit 9078b6bbf674cc742145df19d1f2e21f49fbad71
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Thu May 7 19:03:44 2020 +0000

    Update standards version to 4.5.0, no changes needed.
    
    Fixes: lintian: out-of-date-standards-version
    See-also: https://lintian.debian.org/tags/out-of-date-standards-version.html

https://salsa.debian.org/api/v4/projects/python-team%2Fmodules%2Fpyopenssl API request failed: 404 Not Found at /srv/qa.debian.org/data/vcswatch/vcswatch line 379.

Created: 2020-05-10 Last update: 2020-10-20 08:37

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2020-08-22 Last update: 2020-08-22 06:05

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2018-1000807: Python Cryptographic Authority pyopenssl version prior to version 17.5.0 contains a CWE-416: Use After Free vulnerability in X509 object handling that can result in Use after free can lead to possible denial of service or remote code execution.. This attack appear to be exploitable via Depends on the calling application and if it retains a reference to the memory.. This vulnerability appears to have been fixed in 17.5.0.
CVE-2018-1000808: Python Cryptographic Authority pyopenssl version Before 17.5.0 contains a CWE - 401 : Failure to Release Memory Before Removing Last Reference vulnerability in PKCS #12 Store that can result in Denial of service if memory runs low or is exhausted. This attack appear to be exploitable via Depends upon calling application, however it could be as simple as initiating a TLS connection. Anything that would cause the calling application to reload certificates from a PKCS #12 store.. This vulnerability appears to have been fixed in 17.5.0.

Please fix them.

Created: 2018-10-10 Last update: 2020-08-07 06:08

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.4.1).

Created: 2019-07-08 Last update: 2020-04-23 13:37

news

[rss feed]

[2020-07-22] Accepted pyopenssl 19.0.0-1~bpo9+1 (source all) into stretch-backports->backports-policy, stretch-backports (Debian FTP Masters) (signed by: Ondřej Nový)
[2020-04-28] pyopenssl 19.1.0-2 MIGRATED to testing (Debian testing watch)
[2020-04-23] Accepted pyopenssl 19.1.0-2 (source) into unstable (Sandro Tosi)
[2020-04-22] Accepted pyopenssl 19.1.0-1 (source) into unstable (Andrej Shadura) (signed by: Andrew Shadura)
[2020-04-12] pyopenssl 19.0.0-2 MIGRATED to testing (Debian testing watch)
[2020-04-02] Accepted pyopenssl 19.0.0-2 (source) into unstable (Sandro Tosi)
[2019-01-31] pyopenssl 19.0.0-1 MIGRATED to testing (Debian testing watch)
[2019-01-26] Accepted pyopenssl 19.0.0-1 (source all) into unstable (Sandro Tosi)
[2018-06-15] pyopenssl 18.0.0-1 MIGRATED to testing (Debian testing watch)
[2018-06-09] Accepted pyopenssl 18.0.0-1 (source all) into unstable (Sandro Tosi)
[2018-06-04] pyopenssl 17.5.0-1.1 MIGRATED to testing (Debian testing watch)
[2018-05-29] Accepted pyopenssl 17.5.0-1.1 (source all) into unstable (Ondřej Nový)
[2017-12-18] pyopenssl 17.5.0-1 MIGRATED to testing (Debian testing watch)
[2017-12-13] Accepted pyopenssl 17.5.0-1 (source all) into unstable (Sandro Tosi)
[2016-11-15] pyopenssl 16.2.0-1 MIGRATED to testing (Debian testing watch)
[2016-11-09] Accepted pyopenssl 16.2.0-1 (source all) into unstable (Sandro Tosi)
[2016-09-09] pyopenssl 16.1.0-1 MIGRATED to testing (Debian testing watch)
[2016-09-03] Accepted pyopenssl 16.1.0-1 (source all) into unstable (Sandro Tosi)
[2016-07-22] pyopenssl 16.0.0-2 MIGRATED to testing (Debian testing watch)
[2016-07-16] Accepted pyopenssl 16.0.0-2 (source all) into unstable (Sandro Tosi)
[2016-07-16] Accepted pyopenssl 16.0.0-1~bpo8+1 (source all) into jessie-backports (Sandro Tosi)
[2016-04-19] pyopenssl 16.0.0-1 MIGRATED to testing (Debian testing watch)
[2016-04-13] Accepted pyopenssl 16.0.0-1 (source all) into unstable (Sandro Tosi)
[2016-01-10] Accepted pyopenssl 0.15.1-2~bpo8+1 (source all) into jessie-backports, jessie-backports (Sandro Tosi)
[2015-07-05] pyopenssl 0.15.1-2 MIGRATED to testing (Britney)
[2015-06-30] Accepted pyopenssl 0.15.1-2 (source all) into unstable (Sandro Tosi)
[2015-04-15] Accepted pyopenssl 0.15.1-1 (source all) into experimental (Sandro Tosi)
[2015-04-14] Accepted pyopenssl 0.15-1 (source all) into experimental (Sandro Tosi)
[2014-08-30] pyopenssl 0.14-1 MIGRATED to testing (Britney)
[2014-08-18] Accepted pyopenssl 0.14-1 (source all) into unstable (Sandro Tosi)

bugs [bug history graph]

all: 2
RC: 0
I&N: 2
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (0, 1)
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
other distros
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 19.1.0-2
7 bugs (1 patch)