steghide - Debian Package Tracker

general

source: steghide (main)
version: 0.5.1+git20240220-1
maintainer: Debian Security Tools (DMD)
uploaders: Giovani Augusto Ferreira [DMD]
arch: all any
std-ver: 4.7.4
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.5.1-15
oldstable: 0.5.1-15
stable: 0.5.1-15
testing: 0.5.1-15
unstable: 0.5.1+git20240220-1

versioned links

0.5.1-15: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.5.1+git20240220-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

steghide
steghide-doc

action needed

Marked for autoremoval on 15 July: #1135927 high

Version 0.5.1-15 of steghide is marked for autoremoval from testing on Wed 15 Jul 2026. It is affected by #1135927. The removal of steghide will also cause the removal of (transitive) reverse dependency: stegcracker. You should try to prevent the removal by fixing these RC bugs.

Created: 2026-05-15 Last update: 2026-06-18 06:02

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2021-27211: steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data.

Created: 2022-07-04 Last update: 2026-06-15 23:01

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2021-27211: steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data.

Created: 2025-08-09 Last update: 2026-06-15 23:01

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2026-05-23 Last update: 2026-06-18 06:02

3 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 83cb36cd18d107553a488fbd9540348c1d539170
Author: Alexandre Detiste <alexandre.detiste@gmail.com>
Date:   Tue Jun 16 01:02:06 2026 +0200

    drop "Rules-Requires-Root: binary-targets", not needed anymore

commit fb01054415b16d6d738f8c90611584f4c188ce57
Author: Sven Geuer <sge@debian.org>
Date:   Mon Jun 15 23:37:35 2026 +0200

    d/p/*: Add patch fixing stack-based buffer overflow in Embedder.cc.
    
    Closes: #1125714

commit 070f164b73935b42f35494f88089e21a3ff3bf3b
Author: Sven Geuer <sge@debian.org>
Date:   Mon Jun 15 22:52:23 2026 +0200

    d/p/*: Add patch to keep CXXFLAGS untouched by upstreams build system.
    
    Closes: #1119575

Created: 2022-10-22 Last update: 2026-06-16 00:30

debian/patches: 7 patches to forward upstream low

Among the 7 debian patches available in version 0.5.1+git20240220-1 of the package, we noticed the following issues:

7 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2023-02-26 Last update: 2026-06-16 10:32

Issues found with some translations low

Automatic checks made by the Debian l10n team found some issues with the translations contained in this package. You should check the l10n status report for more information.

Issues can be things such as missing translations, problematic translated strings, outdated PO files, unknown languages, etc.

Created: 2026-06-16 Last update: 2026-06-16 10:01

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2021-27211: (postponed; to be fixed through a stable update) steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-09 Last update: 2026-06-15 23:01

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2021-27211: (postponed; to be fixed through a stable update) steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data.

You can find information about how to handle this issue in the security team's documentation.

Created: 2023-06-10 Last update: 2026-06-15 23:01

testing migrations

excuses:
- Migration status for steghide (0.5.1-15 to 0.5.1+git20240220-1): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ Too young, only 2 of 5 days old
- Additional info (not blocking):
- ∙ ∙ Updating steghide will fix bugs in testing: #1135927
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/s/steghide.html
- ∙ ∙ Autopkgtest for steghide/0.5.1+git20240220-1: amd64: No tests, superficial or marked flaky ♻, arm64: No tests, superficial or marked flaky ♻ (reference ♻), i386: No tests, superficial or marked flaky ♻ (reference ♻), loong64: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: No tests, superficial or marked flaky ♻ (reference ♻), riscv64: No tests, superficial or marked flaky ♻, s390x: No tests, superficial or marked flaky ♻
- ∙ ∙ Reproduced on amd64 - info
- ∙ ∙ Reproduced on arm64 - info
- ∙ ∙ Reproduced on armhf - info
- ∙ ∙ Reproduced on i386 - info
- Not considered

news

[rss feed]

[2026-06-15] Accepted steghide 0.5.1+git20240220-1 (source) into unstable (Sven Geuer)
[2024-08-27] steghide 0.5.1-15 MIGRATED to testing (Debian testing watch)
[2024-08-25] steghide REMOVED from testing (Debian testing watch)
[2020-10-03] steghide 0.5.1-15 MIGRATED to testing (Debian testing watch)
[2020-09-27] Accepted steghide 0.5.1-15 (source) into unstable (Giovani Augusto Ferreira)
[2020-01-07] steghide 0.5.1-14 MIGRATED to testing (Debian testing watch)
[2019-12-26] Accepted steghide 0.5.1-14 (source) into unstable (Giovani Augusto Ferreira)
[2018-09-04] steghide 0.5.1-13 MIGRATED to testing (Debian testing watch)
[2018-08-29] Accepted steghide 0.5.1-13 (source) into unstable (Giovani Augusto Ferreira)
[2016-12-29] steghide 0.5.1-12 MIGRATED to testing (Debian testing watch)
[2016-12-19] Accepted steghide 0.5.1-12 (source) into unstable (Giovani Augusto Ferreira) (signed by: Joao Eriberto Mota Filho)
[2016-10-24] steghide 0.5.1-11 MIGRATED to testing (Debian testing watch)
[2016-10-17] Accepted steghide 0.5.1-11 (source amd64 all) into unstable, unstable (Fernando Seiti Furusato) (signed by: Gianfranco Costamagna)
[2016-06-17] steghide 0.5.1-10 MIGRATED to testing (Debian testing watch)
[2016-06-11] Accepted steghide 0.5.1-10 (source amd64) into unstable (Ola Lundqvist)
[2014-10-25] steghide 0.5.1-9.1 MIGRATED to testing (Britney)
[2014-10-14] Accepted steghide 0.5.1-9.1 (source amd64) into unstable (Matthias Klose)
[2008-03-27] steghide 0.5.1-9 MIGRATED to testing (Debian testing watch)
[2008-03-17] Accepted steghide 0.5.1-9 (source i386) (Ola Lundqvist)
[2006-09-13] steghide 0.5.1-8 MIGRATED to testing (Debian testing watch)
[2006-08-30] Accepted steghide 0.5.1-8 (source i386) (Ola Lundqvist)
[2006-05-03] steghide 0.5.1-7.1 MIGRATED to testing (Debian testing watch)
[2006-04-28] Accepted steghide 0.5.1-7.1 (source i386) (Erinn Clark) (signed by: James Troup)
[2005-12-11] steghide 0.5.1-7 MIGRATED to testing (Debian testing watch)
[2005-11-05] Accepted steghide 0.5.1-7 (source i386) (Ola Lundqvist)
[2005-10-08] Accepted steghide 0.5.1-6 (source i386) (Ola Lundqvist)
[2004-10-02] Accepted steghide 0.5.1-5 (i386 source) (Ola Lundqvist)
[2004-03-27] Accepted steghide 0.5.1-4 (i386 source) (Ola Lundqvist)
[2004-03-22] Accepted steghide 0.5.1-3 (i386 source) (Ola Lundqvist)
[2004-03-21] Accepted steghide 0.5.1-2 (i386 source) (Ola Lundqvist)

bugs [bug history graph]

all: 3
RC: 0
I&N: 1
M&W: 0
F&P: 2
patch: 0

links

homepage
lintian
buildd: logs, reproducibility, cross
popcon
browse source code
other distros
security tracker
l10n (-, 100)
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.5.1-15build1