Debian Package Tracker - python-scrapy

general

source: python-scrapy (main)
version: 1.5.1-1
maintainer: Debian Python Modules Team (archive) [DMD]
uploaders: Ignace Mouzannar [DMD] [dm]
arch: all
std-ver: 4.1.3
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.14.4-1
oldstable: 0.24.2-1
stable: 1.0.3-2
testing: 1.5.1-1
unstable: 1.5.1-1

versioned links

0.14.4-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.24.2-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.0.3-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.5.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

python-scrapy
python-scrapy-doc
python3-scrapy

action needed

Marked for autoremoval on 31 December due to python-testfixtures: #912184 high

Version 1.5.1-1 of python-scrapy is marked for autoremoval from testing on Mon 31 Dec 2018. It depends (transitively) on python-testfixtures, affected by #912184. You should try to prevent the removal by fixing these RC bugs.

Created: 2018-11-05 Last update: 2018-12-17 01:19

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2017-14158: Scrapy 1.4 allows remote attackers to cause a denial of service (memory consumption) via large files because arbitrarily many files are read into memory, which is especially problematic if the files are then individually written in a separate thread to a slow storage resource, as demonstrated by interaction between dataReceived (in core/downloader/handlers/http11.py) and S3FilesStore.

Please fix it.

Created: 2017-09-06 Last update: 2018-10-01 08:10

1 security issue in buster high

There is 1 open security issue in buster.

1 important issue:

CVE-2017-14158: Scrapy 1.4 allows remote attackers to cause a denial of service (memory consumption) via large files because arbitrarily many files are read into memory, which is especially problematic if the files are then individually written in a separate thread to a slow storage resource, as demonstrated by interaction between dataReceived (in core/downloader/handlers/http11.py) and S3FilesStore.

Please fix it.

Created: 2018-10-01 Last update: 2018-10-01 08:10

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2018-10-01 Last update: 2018-12-16 21:03

lintian reports 2 warnings normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2018-10-12 Last update: 2018-10-12 08:26

1 ignored security issue in jessie low

There is 1 open security issue in jessie.

1 issue skipped by the security teams:

CVE-2017-14158: Scrapy 1.4 allows remote attackers to cause a denial of service (memory consumption) via large files because arbitrarily many files are read into memory, which is especially problematic if the files are then individually written in a separate thread to a slow storage resource, as demonstrated by interaction between dataReceived (in core/downloader/handlers/http11.py) and S3FilesStore.

Please fix it.

Created: 2017-09-06 Last update: 2018-10-01 08:10

1 ignored security issue in stretch low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2017-14158: Scrapy 1.4 allows remote attackers to cause a denial of service (memory consumption) via large files because arbitrarily many files are read into memory, which is especially problematic if the files are then individually written in a separate thread to a slow storage resource, as demonstrated by interaction between dataReceived (in core/downloader/handlers/http11.py) and S3FilesStore.

Please fix it.

Created: 2017-09-06 Last update: 2018-10-01 08:10

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.2.1 instead of 4.1.3).

Created: 2018-04-16 Last update: 2018-09-29 21:32

news

[rss feed]

[2018-10-01] python-scrapy 1.5.1-1 MIGRATED to testing (Debian testing watch)
[2018-09-29] Accepted python-scrapy 1.5.1-1 (source) into unstable (Andrej Shadura)
[2018-04-15] python-scrapy REMOVED from testing (Debian testing watch)
[2018-02-01] python-scrapy 1.5.0-1 MIGRATED to testing (Debian testing watch)
[2018-01-22] Accepted python-scrapy 1.5.0-1 (source all) into unstable (Michael Fladischer)
[2017-09-09] python-scrapy 1.4.0-1 MIGRATED to testing (Debian testing watch)
[2017-08-29] Accepted python-scrapy 1.4.0-1 (source all) into unstable (Michael Fladischer)
[2017-06-20] Accepted python-scrapy 1.4.0-1~exp1 (source all) into experimental (Michael Fladischer)
[2017-03-17] Accepted python-scrapy 1.3.3-1~exp1 (source all) into experimental (Michael Fladischer)
[2017-02-17] Accepted python-scrapy 1.3.2-1~exp1 (source all) into experimental (Michael Fladischer)
[2017-02-08] Accepted python-scrapy 1.3.0-1~exp2 (source all) into experimental, experimental (Michael Fladischer)
[2017-01-25] Accepted python-scrapy 1.3.0-1~exp1 (source all) into experimental (Michael Fladischer)
[2016-07-17] python-scrapy 1.0.3-2 MIGRATED to testing (Debian testing watch)
[2016-07-11] Accepted python-scrapy 1.0.3-2 (source all) into unstable (Vincent Cheng)
[2015-09-09] python-scrapy 1.0.3-1 MIGRATED to testing (Britney)
[2015-09-03] Accepted python-scrapy 1.0.3-1 (source all) into unstable (Yaroslav Halchenko)
[2015-07-01] python-scrapy 1.0.0-1 MIGRATED to testing (Britney)
[2015-06-25] Accepted python-scrapy 1.0.0-1 (source all) into unstable (Yaroslav Halchenko)
[2014-07-25] python-scrapy 0.24.2-1 MIGRATED to testing (Britney)
[2014-07-20] Accepted python-scrapy 0.24.2-1 (source all) (Vincent Cheng)
[2014-04-12] python-scrapy 0.22.2-3 MIGRATED to testing (Debian testing watch)
[2014-04-04] Accepted python-scrapy 0.22.2-3 (source all) (Vincent Cheng)
[2014-04-01] Accepted python-scrapy 0.22.2-2 (source all) (Vincent Cheng)
[2014-03-31] Accepted python-scrapy 0.22.2-1 (source all) (Vincent Cheng)
[2012-07-09] python-scrapy 0.14.4-1 MIGRATED to testing (Debian testing watch)
[2012-06-28] Accepted python-scrapy 0.14.4-1 (source all) (Ignace Mouzannar)
[2012-02-23] python-scrapy 0.14.1-1 MIGRATED to testing (Debian testing watch)
[2012-02-12] Accepted python-scrapy 0.14.1-1 (source all) (Ignace Mouzannar)
[2011-09-08] python-scrapy 0.12.0.2546-1 MIGRATED to testing (Debian testing watch)
[2011-08-29] Accepted python-scrapy 0.12.0.2546-1 (source all) (Ignace Mouzannar)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (0, 2)
buildd: logs, clang, reproducibility
popcon
debci
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.5.1-1
2 bugs