Debian Package Tracker

general

source: rustc (main)
version: 1.37.0+dfsg1-1
maintainer: Debian Rust Maintainers (archive) (DMD)
uploaders: Sylvestre Ledru [DMD] – Ximin Luo [DMD]
arch: all any
std-ver: 4.2.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-sec: 1.24.1+dfsg1-1~deb8u4
oldstable: 1.24.1+dfsg1-1~deb9u4
stable: 1.34.2+dfsg1-1
testing: 1.37.0+dfsg1-1
unstable: 1.37.0+dfsg1-1

versioned links

1.24.1+dfsg1-1~deb8u4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.24.1+dfsg1-1~deb9u4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.34.2+dfsg1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.37.0+dfsg1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libstd-rust-1.37
libstd-rust-dev
libstd-rust-dev-wasm32-cross
rust-doc (5 bugs: 1, 3, 1, 0)
rust-gdb
rust-lldb
rust-src (1 bugs: 0, 1, 0, 0)
rustc (3 bugs: 0, 2, 1, 0)

action needed

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  https://forge.rust-lang.org/other-installation-methods.html (?:.*/)rustc?-(\d[\d.]*(?:-[\w.]+)?)-src\.tar\.[gx]z

Created: 2019-09-17 Last update: 2019-09-22 06:41

lintian reports 2 errors and 6 warnings high

Lintian reports 2 errors and 6 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2019-08-30 Last update: 2019-09-06 02:48

Multiarch hinter reports 1 issue(s) low

There are issues with the multiarch metadata for this package.

rust-src could be marked Multi-Arch: foreign

Created: 2017-01-10 Last update: 2019-09-22 06:42

2 ignored security issues in jessie low

There are 2 open security issues in jessie.

2 issues skipped by the security teams:

CVE-2018-1000622: The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the --plugin-path flag. This vulnerability appears to have been fixed in 1.27.1.
CVE-2019-1010299: The Rust Programming Language Standard Library 1.18.0 and later is affected by: CWE-200: Information Exposure. The impact is: Contents of uninitialized memory could be printed to string or to log file. The component is: Debug trait implementation for std::collections::vec_deque::Iter. The attack vector is: The program needs to invoke debug printing for iterator over an empty VecDeque. The fixed version is: 1.30.0, nightly versions after commit b85e4cc8fadaabd41da5b9645c08c68b8f89908d.

Please fix them.

Created: 2018-11-07 Last update: 2019-09-10 07:21

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2018-1000622: The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the --plugin-path flag. This vulnerability appears to have been fixed in 1.27.1.
CVE-2019-1010299: The Rust Programming Language Standard Library 1.18.0 and later is affected by: CWE-200: Information Exposure. The impact is: Contents of uninitialized memory could be printed to string or to log file. The component is: Debug trait implementation for std::collections::vec_deque::Iter. The attack vector is: The program needs to invoke debug printing for iterator over an empty VecDeque. The fixed version is: 1.30.0, nightly versions after commit b85e4cc8fadaabd41da5b9645c08c68b8f89908d.

Please fix them.

Created: 2018-07-10 Last update: 2019-09-10 07:21

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2019-03-18 Last update: 2019-09-05 19:33

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.0 instead of 4.2.1).

Created: 2018-12-23 Last update: 2019-09-05 12:29

news

[rss feed]

[2019-09-10] rustc 1.37.0+dfsg1-1 MIGRATED to testing (Debian testing watch)
[2019-09-05] Accepted rustc 1.37.0+dfsg1-1 (source) into unstable (Ximin Luo) (signed by: )
[2019-09-03] Accepted rustc 1.37.0+dfsg1-1~exp2 (source amd64 all) into experimental, experimental (Ximin Luo) (signed by: )
[2019-08-27] Accepted rustc 1.37.0+dfsg1-1~exp1 (source amd64 all) into experimental, experimental (Ximin Luo)
[2019-07-18] Accepted rustc 1.36.0+dfsg1-2 (source) into unstable (Ximin Luo)
[2019-07-17] Accepted rustc 1.36.0+dfsg1-1 (source) into unstable (Ximin Luo)
[2019-07-16] Accepted rustc 1.36.0+dfsg1-1~exp1 (mips all source) into experimental, experimental (Ximin Luo)
[2019-07-13] Accepted rustc 1.35.0+dfsg1-1 (source) into unstable (Ximin Luo)
[2019-07-10] Accepted rustc 1.35.0+dfsg1-1~exp1 (mips all source) into experimental, experimental (Ximin Luo)
[2019-06-20] rustc 1.34.2+dfsg1-1 MIGRATED to testing (Debian testing watch)
[2019-05-30] Accepted rustc 1.34.2+dfsg1-1 (source) into unstable (Ximin Luo)
[2019-05-25] Accepted rustc 1.34.2+dfsg1-1~exp2 (source) into experimental (Ximin Luo)
[2019-05-23] Accepted rustc 1.34.2+dfsg1-1~exp1 (i386 source) into experimental, experimental (Ximin Luo)
[2019-05-18] Accepted rustc 1.33.0+dfsg1-2 (source) into unstable (Ximin Luo)
[2019-05-18] Accepted rustc 1.33.0+dfsg1-1 (source) into unstable (Ximin Luo)
[2019-05-17] Accepted rustc 1.33.0+dfsg1-1~exp1 (i386 all source) into experimental, experimental (Ximin Luo)
[2019-04-05] rustc 1.32.0+dfsg1-3 MIGRATED to testing (Debian testing watch)
[2019-03-18] Accepted rustc 1.32.0+dfsg1-3 (source) into unstable (Ximin Luo)
[2019-03-17] Accepted rustc 1.32.0+dfsg1-2 (source) into unstable (Ximin Luo)
[2019-02-02] rustc 1.32.0+dfsg1-1 MIGRATED to testing (Debian testing watch)
[2019-01-28] Accepted rustc 1.32.0+dfsg1-1 (mips all source) into unstable (Ximin Luo)
[2019-01-02] Accepted rustc 1.32.0~beta.2+dfsg1-1~exp2 (source) into experimental (Ximin Luo)
[2018-12-28] rustc 1.31.0+dfsg1-2 MIGRATED to testing (Debian testing watch)
[2018-12-18] Accepted rustc 1.24.1+dfsg1-1~deb8u4 (source amd64 all) into oldstable (Emilio Pozuelo Monfort)
[2018-12-17] Accepted rustc 1.32.0~beta.2+dfsg1-1~exp1 (amd64 all source) into experimental, experimental (Ximin Luo)
[2018-12-16] Accepted rustc 1.31.0+dfsg1-2 (source) into unstable (Ximin Luo)
[2018-12-16] Accepted rustc 1.31.0+dfsg1-1 (source) into unstable (Ximin Luo)
[2018-12-15] Accepted rustc 1.31.0+dfsg1-1~exp2 (source) into experimental (Ximin Luo)
[2018-12-15] Accepted rustc 1.31.0+dfsg1-1~exp1 (source) into experimental (Ximin Luo)
[2018-12-01] Accepted rustc 1.31.0~beta.19+dfsg1-1~exp2 (source) into experimental (Ximin Luo)

bugs [bug history graph]

all: 11
RC: 1
I&N: 7
M&W: 3
F&P: 0
patch: 0

links

homepage
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.37.0+dfsg1+llvm-1ubuntu1
3 bugs
patches for 1.37.0+dfsg1+llvm-1ubuntu1