Debian Package Tracker

general

source: sleuthkit (main)
version: 4.6.7-1
maintainer: Debian Security Tools (DMD)
arch: any
std-ver: 4.3.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 4.1.3-4
o-o-sec: 4.1.3-4+deb8u2
oldstable: 4.4.0-5
stable: 4.6.5-1
testing: 4.6.7-1
unstable: 4.6.7-1

versioned links

4.1.3-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.1.3-4+deb8u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.4.0-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.6.5-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.6.7-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libtsk-dev
libtsk13
sleuthkit

action needed

A new upstream version is available: 4.8.0-fixed high

A new upstream version 4.8.0-fixed is available, you should consider packaging it.

Created: 2019-10-14 Last update: 2020-04-08 18:07

5 security issues in bullseye high

There are 5 open security issues in bullseye.

5 important issues:

CVE-2020-10232: In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c.
CVE-2018-11737: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_fix_idxrec in tsk/fs/ntfs_dent.cpp which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.
CVE-2018-11740: An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function tsk_UTF16toUTF8 in tsk/base/tsk_unicode.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11739: An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function raw_read in tsk/img/raw.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11738: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_make_data_run in tsk/fs/ntfs.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.

Please fix them.

Created: 2019-07-07 Last update: 2020-03-15 13:34

5 security issues in sid high

There are 5 open security issues in sid.

5 important issues:

CVE-2020-10232: In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c.
CVE-2018-11737: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_fix_idxrec in tsk/fs/ntfs_dent.cpp which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.
CVE-2018-11740: An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function tsk_UTF16toUTF8 in tsk/base/tsk_unicode.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11739: An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function raw_read in tsk/img/raw.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11738: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_make_data_run in tsk/fs/ntfs.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.

Please fix them.

Created: 2018-06-06 Last update: 2020-03-15 13:34

Depends on packages which need a new maintainer normal

The packages that sleuthkit depends on which need a new maintainer are:

autopsy (#832370)
- Suggests: autopsy

Created: 2019-11-22 Last update: 2020-04-08 17:54

Multiarch hinter reports 2 issue(s) normal

There are issues with the multiarch metadata for this package.

libtsk-dev could be marked Multi-Arch: same
libtsk13 could be marked Multi-Arch: same

Created: 2020-02-11 Last update: 2020-04-08 13:26

6 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 5143ac03bbfc2cf2f01767333a35c26e5737bf87
Author: Samuel Henrique <samueloph@debian.org>
Date:   Sun Feb 9 18:35:56 2020 +0000

    Configure git-buildpackage for Debian

commit cb8fd003cfadf4af95d53ee1c401820ec831346c
Merge: 2495001 4f28dc1
Author: Michael Prokop <mika@debian.org>
Date:   Fri Jan 31 16:44:35 2020 +0100

    Update upstream source from tag 'upstream/4.8.0'
    
    Update to upstream version '4.8.0'
    with Debian dir 73eae1ec88ebe975d072eb62b1d818a937ceddf3

commit 4f28dc1449c143766e8d021b4416dbd0e1261e5d
Author: Michael Prokop <mika@debian.org>
Date:   Thu Jan 30 11:33:03 2020 +0100

    New upstream version 4.8.0

commit 24950012d43d387a103cd9b0f83085ce57c8972b
Author: Michael Prokop <mika@debian.org>
Date:   Thu Jan 30 09:46:33 2020 +0100

    Bump Standards-Version to 4.5.0

commit 288bc32669f86fb71da58c320caf76f2b9dff9a7
Author: Michael Prokop <mika@debian.org>
Date:   Thu Jan 30 09:32:02 2020 +0100

    Add libvhdi and libvmdk support
    
    Build-Depend on libvmdk-dev + libvhdi-dev, as libvhdi and libvmdk
    functionality was introduced in sleuthkit v4.6.1.
    
    Those dependencies were also introduced in upstream's debian
    packaging, see git commit 381c6d5ad403 (in upstream's repo
    at https://github.com/sleuthkit/sleuthkit).
    
    Refreshed debian/libtsk13.symbols to address new symbol changes.

commit 4e2eaca05afba65d72cbc6820e2f2419ef85289e
Author: Samuel Henrique <samueloph@debian.org>
Date:   Sat Oct 5 23:29:05 2019 +0100

    Add salsa-ci.yml

Created: 2019-10-06 Last update: 2020-04-08 07:33

5 ignored security issues in buster low

There are 5 open security issues in buster.

5 issues skipped by the security teams:

CVE-2020-10232: In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c.
CVE-2018-11737: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_fix_idxrec in tsk/fs/ntfs_dent.cpp which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.
CVE-2018-11740: An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function tsk_UTF16toUTF8 in tsk/base/tsk_unicode.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11739: An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function raw_read in tsk/img/raw.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11738: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_make_data_run in tsk/fs/ntfs.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.

Please fix them.

Created: 2018-06-06 Last update: 2020-03-15 13:34

4 ignored security issues in jessie low

There are 4 open security issues in jessie.

4 issues skipped by the security teams:

CVE-2018-11737: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_fix_idxrec in tsk/fs/ntfs_dent.cpp which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.
CVE-2018-11740: An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function tsk_UTF16toUTF8 in tsk/base/tsk_unicode.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11739: An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function raw_read in tsk/img/raw.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11738: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_make_data_run in tsk/fs/ntfs.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.

Please fix them.

Created: 2018-06-06 Last update: 2020-03-15 13:34

6 ignored security issues in stretch low

There are 6 open security issues in stretch.

6 issues skipped by the security teams:

CVE-2020-10232: In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c.
CVE-2018-11737: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_fix_idxrec in tsk/fs/ntfs_dent.cpp which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.
CVE-2018-11740: An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function tsk_UTF16toUTF8 in tsk/base/tsk_unicode.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11739: An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function raw_read in tsk/img/raw.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-11738: An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_make_data_run in tsk/fs/ntfs.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVE-2018-19497: In The Sleuth Kit (TSK) through 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c does not properly determine when a key length is too large, which allows attackers to cause a denial of service (SEGV on unknown address with READ memory access in a tsk_getu16 call in hfs_dir_open_meta_cb in tsk/fs/hfs_dent.c).

Please fix them.

Created: 2018-06-06 Last update: 2020-03-15 13:34

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.3.0).

Created: 2019-07-08 Last update: 2020-01-21 05:06

testing migrations

This package will soon be part of the auto-libewf transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2020-03-09] Accepted sleuthkit 4.1.3-4+deb8u2 (source amd64) into oldoldstable (Utkarsh Gupta)
[2019-09-21] sleuthkit 4.6.7-1 MIGRATED to testing (Debian testing watch)
[2019-09-16] Accepted sleuthkit 4.6.7-1 (source) into unstable (Hilko Bengen)
[2019-01-27] sleuthkit 4.6.5-1 MIGRATED to testing (Debian testing watch)
[2019-01-22] Accepted sleuthkit 4.6.5-1 (source) into unstable (Hilko Bengen)
[2019-01-16] sleuthkit 4.6.4-2 MIGRATED to testing (Debian testing watch)
[2019-01-13] Accepted sleuthkit 4.6.4-2 (source) into unstable (Hilko Bengen)
[2018-12-30] sleuthkit 4.6.4-1 MIGRATED to testing (Debian testing watch)
[2018-12-24] Accepted sleuthkit 4.6.4-1 (source) into unstable (Hilko Bengen)
[2018-12-17] Accepted sleuthkit 4.1.3-4+deb8u1 (source amd64) into oldstable (Hugo Lefeuvre)
[2018-08-17] sleuthkit 4.6.2-1 MIGRATED to testing (Debian testing watch)
[2018-08-12] Accepted sleuthkit 4.6.2-1 (source) into unstable (Hilko Bengen)
[2018-08-11] sleuthkit 4.6.1-1 MIGRATED to testing (Debian testing watch)
[2018-08-05] Accepted sleuthkit 4.6.1-1 (source) into unstable (Hilko Bengen)
[2018-04-06] sleuthkit 4.6.0-1 MIGRATED to testing (Debian testing watch)
[2018-03-31] Accepted sleuthkit 4.6.0-1 (source) into unstable (Hilko Bengen)
[2017-09-25] sleuthkit 4.4.2-3 MIGRATED to testing (Debian testing watch)
[2017-09-19] Accepted sleuthkit 4.4.2-3 (source) into unstable (Joao Eriberto Mota Filho)
[2017-09-19] Accepted sleuthkit 4.4.2-2 (source) into experimental (Joao Eriberto Mota Filho)
[2017-08-20] sleuthkit 4.4.2-1 MIGRATED to testing (Debian testing watch)
[2017-08-14] Accepted sleuthkit 4.4.2-1 (source) into unstable (Hilko Bengen)
[2017-08-14] sleuthkit 4.4.0-6 MIGRATED to testing (Debian testing watch)
[2017-08-08] Accepted sleuthkit 4.4.0-6 (source) into unstable (Hilko Bengen)
[2017-03-05] sleuthkit 4.4.0-5 MIGRATED to testing (Debian testing watch)
[2017-02-25] Accepted sleuthkit 4.4.0-5 (source) into unstable (Joao Eriberto Mota Filho)
[2017-02-19] Accepted sleuthkit 4.4.0-4 (source) into experimental (Joao Eriberto Mota Filho)
[2017-02-18] Accepted sleuthkit 4.4.0-3 (source) into experimental (Joao Eriberto Mota Filho)
[2017-02-05] sleuthkit 4.4.0-2 MIGRATED to testing (Debian testing watch)
[2017-01-25] Accepted sleuthkit 4.4.0-2 (source) into unstable (Joao Eriberto Mota Filho)
[2017-01-25] Accepted sleuthkit 4.4.0-1 (source) into experimental (Joao Eriberto Mota Filho)

bugs [bug history graph]

all: 4
RC: 0
I&N: 3
M&W: 0
F&P: 1
patch: 0

links

homepage
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
screenshots
l10n (-, 55)

ubuntu

[Information about Ubuntu for Debian Developers]

version: 4.6.7-1build1