request-tracker5 - Debian Package Tracker

general

source: request-tracker5 (main)
version: 5.0.10+dfsg-1
maintainer: Debian Request Tracker Group (archive) (DMD)
uploaders: Andrew Ruthven [DMD] – Niko Tyni [DMD] – Dominic Hargreaves [DMD]
arch: all
std-ver: 4.7.3
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 5.0.3+dfsg-3~deb12u5
old-sec: 5.0.3+dfsg-3~deb12u4
stable: 5.0.7+dfsg-4+deb13u2
stable-sec: 5.0.7+dfsg-4+deb13u1
testing: 5.0.9+dfsg-4
unstable: 5.0.10+dfsg-1

versioned links

5.0.3+dfsg-3~deb12u4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.0.3+dfsg-3~deb12u5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.0.7+dfsg-4+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.0.7+dfsg-4+deb13u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.0.9+dfsg-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.0.10+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

request-tracker5 (3 bugs: 0, 3, 0, 0)
rt5-apache2
rt5-clients
rt5-db-mysql
rt5-db-postgresql
rt5-db-sqlite
rt5-doc-html
rt5-fcgi
rt5-standalone

action needed

Marked for autoremoval on 20 June due to elinks: #1136929, #1135916 high

Version 5.0.9+dfsg-4 of request-tracker5 is marked for autoremoval from testing on Sat 20 Jun 2026. It is affected by #1136929. The removal of request-tracker5 will also cause the removal of (transitive) reverse dependencies: libmodule-install-rtx-perl, rt-extension-assetautoname, rt-extension-assets-import-csv, rt-extension-calendar, rt-extension-commandbymail, rt-extension-customfieldsonupdate, rt-extension-elapsedbusinesstime, rt-extension-jsgantt, rt-extension-mergeusers, rt-extension-nagios, rt-extension-repeatticket, rt-extension-resetpassword, rt-extension-smsnotify. It depends (transitively) on elinks, affected by #1135916. You should try to prevent the removal by fixing these RC bugs.

Created: 2026-05-12 Last update: 2026-05-26 13:35

8 security issues in trixie high

There are 8 open security issues in trixie.

8 important issues:

CVE-2026-6841: Request Tracker is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the "Page" parameter in GET requests. An attacker can craft a URL that, when opened, results in arbitrary JavaScript execution in the victim’s browser. This vulnerability affects versions from 5.0.4 up to 5.0.9 and from 6.0.0 up to 6.0.2.
CVE-2026-41073: RT is an open source, enterprise-grade issue and ticket tracking system. Versions prior to 5.0.10 and 6.0.0 through 6.0.2 contain a spreadsheet (CSV/formula) injection vulnerability. User-controlled data in spreadsheet exports is not sanitized before being written to the output file, which can cause spreadsheet applications to interpret crafted values as formulas or macros when the file is opened. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by avoiding opening exported RT spreadsheet files directly in spreadsheet applications when the data may contain untrusted user input.
CVE-2026-41075: RT is an open source, enterprise-grade issue and ticket tracking system. Versions 5.0.0 through 5.0.9 and 6.0.0 through 6.0.2 contain an SQL injection vulnerability. An authenticated user can craft input that is incorporated into database queries without proper validation, potentially allowing them to read or modify data in the RT database. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by restricting RT account access to trusted users.
CVE-2026-41076: RT is an open source, enterprise-grade issue and ticket tracking system. Versions 5.0.9 and prior in addition to 6.0.0 through 6.0.2 contain an authentication bypass vulnerability in RT installations that use LDAP/AD for user authentication. Under certain LDAP server configurations, an attacker may be able to authenticate as any LDAP-backed RT user without supplying valid credentials. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by reviewing their LDAP server's authentication policy to ensure it rejects unauthenticated bind attempts. Upgrading RT remains the recommended fix.
CVE-2026-44227:
CVE-2026-44229:
CVE-2026-44230:
CVE-2026-44231:

Created: 2026-05-20 Last update: 2026-05-23 12:00

8 security issues in forky high

There are 8 open security issues in forky.

8 important issues:

CVE-2026-6841: Request Tracker is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the "Page" parameter in GET requests. An attacker can craft a URL that, when opened, results in arbitrary JavaScript execution in the victim’s browser. This vulnerability affects versions from 5.0.4 up to 5.0.9 and from 6.0.0 up to 6.0.2.
CVE-2026-41073: RT is an open source, enterprise-grade issue and ticket tracking system. Versions prior to 5.0.10 and 6.0.0 through 6.0.2 contain a spreadsheet (CSV/formula) injection vulnerability. User-controlled data in spreadsheet exports is not sanitized before being written to the output file, which can cause spreadsheet applications to interpret crafted values as formulas or macros when the file is opened. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by avoiding opening exported RT spreadsheet files directly in spreadsheet applications when the data may contain untrusted user input.
CVE-2026-41075: RT is an open source, enterprise-grade issue and ticket tracking system. Versions 5.0.0 through 5.0.9 and 6.0.0 through 6.0.2 contain an SQL injection vulnerability. An authenticated user can craft input that is incorporated into database queries without proper validation, potentially allowing them to read or modify data in the RT database. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by restricting RT account access to trusted users.
CVE-2026-41076: RT is an open source, enterprise-grade issue and ticket tracking system. Versions 5.0.9 and prior in addition to 6.0.0 through 6.0.2 contain an authentication bypass vulnerability in RT installations that use LDAP/AD for user authentication. Under certain LDAP server configurations, an attacker may be able to authenticate as any LDAP-backed RT user without supplying valid credentials. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by reviewing their LDAP server's authentication policy to ensure it rejects unauthenticated bind attempts. Upgrading RT remains the recommended fix.
CVE-2026-44227:
CVE-2026-44229:
CVE-2026-44230:
CVE-2026-44231:

Created: 2026-05-20 Last update: 2026-05-23 12:00

8 security issues in bookworm high

There are 8 open security issues in bookworm.

8 important issues:

CVE-2026-6841: Request Tracker is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the "Page" parameter in GET requests. An attacker can craft a URL that, when opened, results in arbitrary JavaScript execution in the victim’s browser. This vulnerability affects versions from 5.0.4 up to 5.0.9 and from 6.0.0 up to 6.0.2.
CVE-2026-41073: RT is an open source, enterprise-grade issue and ticket tracking system. Versions prior to 5.0.10 and 6.0.0 through 6.0.2 contain a spreadsheet (CSV/formula) injection vulnerability. User-controlled data in spreadsheet exports is not sanitized before being written to the output file, which can cause spreadsheet applications to interpret crafted values as formulas or macros when the file is opened. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by avoiding opening exported RT spreadsheet files directly in spreadsheet applications when the data may contain untrusted user input.
CVE-2026-41075: RT is an open source, enterprise-grade issue and ticket tracking system. Versions 5.0.0 through 5.0.9 and 6.0.0 through 6.0.2 contain an SQL injection vulnerability. An authenticated user can craft input that is incorporated into database queries without proper validation, potentially allowing them to read or modify data in the RT database. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by restricting RT account access to trusted users.
CVE-2026-41076: RT is an open source, enterprise-grade issue and ticket tracking system. Versions 5.0.9 and prior in addition to 6.0.0 through 6.0.2 contain an authentication bypass vulnerability in RT installations that use LDAP/AD for user authentication. Under certain LDAP server configurations, an attacker may be able to authenticate as any LDAP-backed RT user without supplying valid credentials. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by reviewing their LDAP server's authentication policy to ensure it rejects unauthenticated bind attempts. Upgrading RT remains the recommended fix.
CVE-2026-44227:
CVE-2026-44229:
CVE-2026-44230:
CVE-2026-44231:

Created: 2026-05-20 Last update: 2026-05-23 12:00

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2026-05-01 Last update: 2026-05-26 12:02

35 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 8d365d00caac2ad9385a5ac64bbb219837c9a16e
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu May 21 22:19:44 2026 +1200

    Add missing .service suffix to services

commit 5df911789df79dab1219a7c9fd4c739378538827
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu May 21 21:23:28 2026 +1200

    Drop redundant lintian overrides

commit 45a6d049ac2fae2028b1c637905abf6d45423b77
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu May 21 20:13:12 2026 +1200

    Update for new upstream release

commit 299e46ab8bd53c04eaf855bf5d5a840a6f83253a
Merge: 6fbd488 2da0e3d
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu May 21 19:46:45 2026 +1200

    merge patched into master

commit 2da0e3d29644df41fca830178a2d4e3b0da63c4f
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Mon Oct 27 17:26:04 2025 +1300

    Downgrade dependency on CSS::Inliner to >= 4024
    
    In Debian, we already have the fix that disables the test that requires
    Internet. This is the only significant change in 4024.
    
    I'm keeping this patch to simplify backports to Trixie.
    
    Forwarded: not-needed
    Patch-Name: downgrade_CSS::Inliner.diff

commit c7889ddd9fb418ff854f3d18174e7aa77445278c
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Wed May 21 20:29:22 2025 +1200

    Debianize UPGRADING-5.0
    
    Forwarded: not-needed
    Patch-Name: debianize_UPGRADING-5.0.diff

commit 14cb9af2385502d16b33d93983e00b9721ec87db
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Wed May 21 20:38:16 2025 +1200

    Debianize UPGRADING-4.4
    
    Forwarded: not-needed
    Patch-Name: debianize_UPGRADING-4.4.diff

commit a9c267da650b7e94de829eef4c2fe33f9e3aaa46
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Tue Jul 16 21:41:44 2024 +1200

    Don't include remote images in README
    
    This fixes a lintian privacy-breach-logo issue.
    
    Patch-Name: fix_lintian_privacy_README.diff
    Forwarded: not-needed

commit c6b422986a2e361abedc0a074f404008bf17358e
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Wed May 15 22:21:35 2024 +1200

    Fix spelling in documentation
    
    Patch-Name: fix_spelling.diff

commit c02bd08259e6da3ba46d9be02e9d278504808ae2
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Wed Aug 16 23:47:30 2023 +1200

    Don't run dirmngr during tests runs
    
    This process is left running after the tests finish and prevents this
    package from passing the reproducible builds.
    
    Patch-Name: disable_dirmngr_in_tests.diff
    Forwarded: not-needed

commit e6db38534695b24bb543dd453ffacd6472b33ad5
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Mon May 8 22:44:11 2023 +1200

    Downgrade dependency on GD::Graph to >= 1.54
    
    In Debian, we already have the fix for the XBM failing tests, which
    is the only significant change in 1.56.
    
    I'm keeping this patch to simplify backports to Bookworm.
    
    Forwarded: not-needed
    Patch-Name: downgrade_GD::Graph.diff

commit 0d0cce0899bc703464664fc2c55b72a4491e9fb8
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Sun Jun 26 10:54:21 2022 +1200

    Skip t/mail/smime/realmail.t for now.
    
    Broken by OpenSSL 3.0 as the test emails use DES which is now disabled.
    
    Forwarded: https://rt.bestpractical.com/Ticket/Display.html?id=37422
    Patch-Name: disable-test-smime-realmail.diff
    Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1013730

commit 1f97b5066625fe814004d13183b2b0c5cdb961d6
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Sat Feb 13 21:40:00 2021 +1300

    Debian provides the Mozilla CAs in the ca-certificates package.
    
    Forwarded: not-needed
    Patch-Name: skip_Mozilla::CA_check.diff

commit 090289b6f9376253c1acf32672c61fa5dc442441
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu Jul 9 23:03:35 2020 +1200

    On Debian there is no need to install the GD modules if GD is desired.
    
    Forwarded: not-needed
    Patch-Name: debianize_charts.diff

commit cb6d5e6cf5445708c600f1eb787438dff09aa920
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu Jul 9 22:53:09 2020 +1200

    Use Debian location of commands and data
    
    Forwarded: not-needed
    Patch-Name: debianize_commands.diff

commit 6eaffa8b79f2e2f8bf6ce8da7db3e029074ccdee
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu Jul 9 22:33:55 2020 +1200

    Point to Debian location of mason_data.
    
    Forwarded: not-needed
    Patch-Name: debianize_extensions.diff

commit 14d9b43c00201e9a3d2112c4e49c0f20c219b81b
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Mon Jul 6 21:30:54 2020 +1200

    Force use of IPv4 for LDAP test.
    
    Net::LDAP::Server::Test binds to IPv6 by default, but Net::LDAP uses
    'localhost' which resolves to an IPv4 address.  Even when I switched
    the call to Net::LDAP->new() to use ip6-localhost it failed elsewhere
    due to RT using 127.0.0.1.
    
    Patch-Name: fix_test_ldap_ipv4.diff
    Forwarded: https://github.com/bestpractical/rt/pull/367

commit c49b87dbd7dcd726825838af2e3d51f5b9e85737
Author: Dominic Hargreaves <dom@earth.li>
Date:   Sun Mar 29 19:37:52 2020 +0100

    Fix shebang for Debian policy
    
    Patch-Name: fix_shebang_upgrade_mysql_schema.diff
    Forwarded: not-needed

commit 476a7e903445c0952c8dfe5adc2a38b63cf1b9f2
Author: Dominic Hargreaves <dom@earth.li>
Date:   Sun Sep 9 21:35:08 2018 +0100

    Force the use of Cpanel::JSON::XS
    
    JSON::XS breaks RT due to the removed from_json/to_json methods and JSON.pm
    prefers JSON::XS to our preferred implementation Cpanel::JSON::XS by
    default.
    
    Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848041
    Patch-Name: use_cpanel_json_xs.diff
    Forwarded: not-needed

commit 14c3adcf6c9098422d57b31186f34788542305a8
Author: gregor herrmann <gregoa@debian.org>
Date:   Tue Oct 11 20:40:39 2016 +0200

    set LC_ALL to C
    
    LANG overrides only not set LC_variables, so if LC_CTYPE is set in the
    environment, it persists and tons of tests fail.
    
    Origin: vendor
    Author: gregor herrmann <gregoa@debian.org>
    Last-Update: 2016-10-11
    Patch-Name: test_locale.diff
    Forwarded: not-needed

commit 1a8c53a5e0c3c4d25de38db4fd406b24d9e8ec87
Author: Dominic Hargreaves <dom@earth.li>
Date:   Fri Jan 1 18:23:08 2016 +0000

    Use Noto Sans instead of Droid Sans
    
    Droid Sans is deprecated in Debian, and we are using the fonts from
    Debian rather than bundled with RT.
    
    Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804687
    Patch-Name: fonts_use_noto_sans.diff
    Forwarded: not-needed

commit 6e4ee9f417b644a23e98226c5ce7916a737c5867
Author: Dominic Hargreaves <dom@earth.li>
Date:   Thu Dec 31 12:17:56 2015 +0000

    Extract the correct (Debian) version number in configure.ac
    
    Also make clear in the web interface that this version number is from
    Debian.
    
    Patch-Name: debianize_version.diff
    Forwarded: not-needed

commit 6afd551762b57ed827f2fca533a4edd6c7a89e95
Author: Dominic Hargreaves <dom@earth.li>
Date:   Thu May 7 21:37:37 2015 +0000

    Allow overriding DatabaseType from the environment in RT::Test
    
    Patch-Name: rt_test_db_type.diff

commit 2009bed3e2675ad3b1d66ea911dca73dc93a70f5
Author: Dominic Hargreaves <dom@earth.li>
Date:   Wed May 6 22:29:35 2015 +0000

    Load RT::Generated directly from @INC
    
    This allows for the possibility of overriding RT::Generated in test
    scenarios.
    
    Patch-Name: load_rt_generated.diff

commit 67056523fe2759cba0d656b5862c26805e60f103
Author: Niko Tyni <ntyni@debian.org>
Date:   Sat Dec 27 23:19:03 2014 +0200

    Fix upgrade problems caused by an RTx::AssetTracker installation bug
    
    The setup of the wheezy rt4-extension-assettracker package
    (RTx::AssetTracker 2.0.0b2) accidentally inserted two pairs of system role
    accounts, causing upgrade failures on SQLite backends due to uniqueness
    constraint violations.
    
    Bug-Debian: https://bugs.debian.org/773343
    Patch-Name: assettracker-sysgroups.diff
    Forwarded: not-needed

commit 18420fe41c3e95c34c407ff01a3ceffc1da24b92
Author: Dominic Hargreaves <dom@earth.li>
Date:   Sun Feb 23 22:48:50 2014 +0000

    Debianize UPGRADING-4.2
    
    Forwarded: not-needed
    Patch-Name: debianize_UPGRADING-4.2.diff

commit 7ad1aff0137e8804fa8c06b71f12bb3f1a99ab30
Author: Dominic Hargreaves <dom@earth.li>
Date:   Sun Feb 16 16:11:43 2014 +0000

    Don't include remote image references or redirects in broken install page
    
    This fixes the lintian error privacy-breach-logo
    
    Forwarded: not-needed
    Patch-Name: fix_lintian_privacy_break_logo_error.diff

commit 225dd32dea2de69fd5e6cee033e60c620cff6884
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Wed May 15 22:16:42 2024 +1200

    Reference correct local directory for Debian
    
    Forwarded: not-needed
    Patch-Name: debianize_docs_local.diff

commit e18e1ee28fdeff34a2b832a4a7f7858e7dc0437e
Author: Dominic Hargreaves <dom@earth.li>
Date:   Wed Mar 27 23:36:30 2013 +0000

    Customise backup docs for Debian
    
    Forwarded: not-needed
    Patch-Name: debianize_backup_docs.diff

commit e0280932027a4fa2f4edb36c9d64e980982fce8f
Author: Dominic Hargreaves <dom@earth.li>
Date:   Sun Mar 24 18:38:07 2013 +0000

    Fix relative references to config path
    
    Forwarded: not-needed
    Bug: http://issues.bestpractical.com/Ticket/Display.html?id=13592
    Bug-Debian: http://bugs.debian.org/518556
    
    Patch-Name: rt_setup_database_upgrade_basedir.diff

commit f2183b3637997f5a0ee668fe30caf511e3c2a498
Author: Stephen Quinney <sjq@debian.org>
Date:   Sun Mar 24 18:38:06 2013 +0000

    Use RT_SiteModules.pm in lib/RT/Interface/Web/Handler.pm
    
    Forwarded: not-needed
    
    Patch-Name: sitemodules.diff

commit b2c105f0c83aa30aeb7905de70b5f69d70aad367
Author: Stephen Quinney <sjq@debian.org>
Date:   Sun Mar 24 18:38:05 2013 +0000

    Add Debian layout (FHS-compatible)
    
    Forwarded: not-needed
    
    Patch-Name: layout.diff

commit 6fbd48802481fb5e7c70c052dca6b32e3fd91a13
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu May 21 19:42:33 2026 +1200

    record new upstream branch created by importing request-tracker5_5.0.10+dfsg.orig.tar.gz, request-tracker5_5.0.10+dfsg.orig-third-party-source.tar.gz

commit d64671f5d1ddf38acdd6a36c853977b22d0e7a88
Merge: b825e28 b75025e
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu May 21 19:42:32 2026 +1200

    Import request-tracker5_5.0.10+dfsg.orig.tar.gz, request-tracker5_5.0.10+dfsg.orig-third-party-source.tar.gz

commit b75025e3a5806388afe070f1df6898971c9c1cbd
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date:   Thu May 21 19:42:02 2026 +1200

    Import request-tracker5_5.0.10+dfsg.orig.tar.gz

Created: 2026-05-21 Last update: 2026-05-21 16:02

Issues found with some translations low

Automatic checks made by the Debian l10n team found some issues with the translations contained in this package. You should check the l10n status report for more information.

Issues can be things such as missing translations, problematic translated strings, outdated PO files, unknown languages, etc.

Created: 2026-02-16 Last update: 2026-05-22 12:00

debian/patches: 3 patches to forward upstream low

Among the 28 debian patches available in version 5.0.10+dfsg-1 of the package, we noticed the following issues:

3 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2023-02-26 Last update: 2026-05-21 23:01

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.4 instead of 4.7.3).

Created: 2026-03-31 Last update: 2026-05-21 19:30

testing migrations

excuses:
- Migration status for request-tracker5 (5.0.9+dfsg-4 to 5.0.10+dfsg-1): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ Autopkgtest for request-tracker5/5.0.10+dfsg-1: amd64: No tests, superficial or marked flaky ♻, arm64: No tests, superficial or marked flaky ♻, i386: Pass, ppc64el: No tests, superficial or marked flaky ♻, riscv64: No tests, superficial or marked flaky ♻, s390x: Pass
- ∙ ∙ Autopkgtest for rt-extension-mergeusers/1.10-2: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for rt-extension-nagios/1.01-4: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for rt-extension-repeatticket/2.04-1: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for rt-extension-resetpassword/1.12-5: amd64: No tests, superficial or marked flaky ♻, arm64: No tests, superficial or marked flaky ♻ (reference ♻), i386: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: No tests, superficial or marked flaky ♻, riscv64: Test triggered, s390x: No tests, superficial or marked flaky ♻
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/r/request-tracker5.html
- ∙ ∙ Reproduced on amd64 - info
- ∙ ∙ Reproduced on arm64 - info
- ∙ ∙ Reproduced on armhf - info
- ∙ ∙ Reproduced on i386 - info
- ∙ ∙ 5 days old (needed 5 days)
- Not considered

news

[rss feed]

[2026-05-21] Accepted request-tracker5 5.0.10+dfsg-1 (source) into unstable (Andrew Ruthven)
[2026-03-28] Accepted request-tracker5 5.0.3+dfsg-3~deb12u5 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Andrew Ruthven)
[2026-03-28] Accepted request-tracker5 5.0.7+dfsg-4+deb13u2 (source) into proposed-updates (Debian FTP Masters) (signed by: Andrew Ruthven)
[2026-03-25] request-tracker5 5.0.9+dfsg-4 MIGRATED to testing (Debian testing watch)
[2026-03-20] Accepted request-tracker5 5.0.9+dfsg-4 (source) into unstable (Andrew Ruthven)
[2026-03-08] request-tracker5 5.0.9+dfsg-3 MIGRATED to testing (Debian testing watch)
[2026-03-03] Accepted request-tracker5 5.0.9+dfsg-3 (source) into unstable (Andrew Ruthven)
[2026-03-02] Accepted request-tracker5 5.0.9+dfsg-2 (source) into unstable (Andrew Ruthven)
[2026-02-14] Accepted request-tracker5 5.0.9+dfsg-1 (source) into unstable (Andrew Ruthven)
[2025-11-01] Accepted request-tracker5 5.0.3+dfsg-3~deb12u4 (source all) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Andrew Ruthven)
[2025-10-30] request-tracker5 5.0.7+dfsg-6 MIGRATED to testing (Debian testing watch)
[2025-10-29] Accepted request-tracker5 5.0.7+dfsg-4+deb13u1 (source all) into proposed-updates (Debian FTP Masters) (signed by: Andrew Ruthven)
[2025-10-27] Accepted request-tracker5 5.0.7+dfsg-6 (source) into unstable (Andrew Ruthven)
[2025-10-23] Accepted request-tracker5 5.0.7+dfsg-5 (source all) into unstable (Andrew Ruthven)
[2025-10-22] Accepted request-tracker5 5.0.3+dfsg-3~deb12u4 (source all) into oldstable-security (Debian FTP Masters) (signed by: Andrew Ruthven)
[2025-10-22] Accepted request-tracker5 5.0.7+dfsg-4+deb13u1 (source all) into stable-security (Debian FTP Masters) (signed by: Andrew Ruthven)
[2025-05-26] request-tracker5 5.0.7+dfsg-4 MIGRATED to testing (Debian testing watch)
[2025-05-21] Accepted request-tracker5 5.0.7+dfsg-4 (source) into unstable (Andrew Ruthven)
[2025-05-14] request-tracker5 5.0.7+dfsg-3 MIGRATED to testing (Debian testing watch)
[2025-05-04] Accepted request-tracker5 5.0.7+dfsg-3 (source) into unstable (Andrew Ruthven)
[2025-05-03] Accepted request-tracker5 5.0.3+dfsg-3~deb12u3 (source) into proposed-updates (Debian FTP Masters) (signed by: Andrew Ruthven)
[2025-04-30] Accepted request-tracker5 5.0.3+dfsg-3~deb12u3 (source) into stable-security (Debian FTP Masters) (signed by: Andrew Ruthven)
[2024-11-21] request-tracker5 5.0.7+dfsg-2 MIGRATED to testing (Debian testing watch)
[2024-11-03] request-tracker5 REMOVED from testing (Debian testing watch)
[2024-10-03] request-tracker5 5.0.7+dfsg-2 MIGRATED to testing (Debian testing watch)
[2024-09-27] Accepted request-tracker5 5.0.7+dfsg-2 (source) into unstable (Andrew Ruthven)
[2024-08-17] request-tracker5 5.0.7+dfsg-1 MIGRATED to testing (Debian testing watch)
[2024-08-11] Accepted request-tracker5 5.0.7+dfsg-1 (source) into unstable (Andrew Ruthven)
[2023-12-11] request-tracker5 5.0.5+dfsg-2 MIGRATED to testing (Debian testing watch)
[2023-12-09] Accepted request-tracker5 5.0.5+dfsg-2 (source) into unstable (Andrew Ruthven)

bugs [bug history graph]

all: 7
RC: 1
I&N: 4
M&W: 1
F&P: 1
patch: 0

links

homepage
lintian
buildd: logs, reproducibility
popcon
browse source code
other distros
security tracker
l10n (98, 55)
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 5.0.7+dfsg-6
1 bug