sympa - Debian Package Tracker

general

source: sympa (main)
version: 6.2.66~dfsg-2
maintainer: Debian Sympa team (DMD)
uploaders: Stefan Hornburg (Racke) [DMD] – Emmanuel Bouthenot [DMD]
arch: any
std-ver: 4.6.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 6.2.16~dfsg-3+deb9u2
o-o-sec: 6.2.16~dfsg-3+deb9u5
oldstable: 6.2.40~dfsg-1+deb10u1
old-sec: 6.2.40~dfsg-1+deb10u1
stable: 6.2.60~dfsg-4
testing: 6.2.66~dfsg-2
unstable: 6.2.66~dfsg-2

versioned links

6.2.16~dfsg-3+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.16~dfsg-3+deb9u5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.40~dfsg-1+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.60~dfsg-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.66~dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

sympa (29 bugs: 0, 17, 12, 0)

action needed

Marked for autoremoval on 30 June due to nvidia-graphics-drivers-tesla-470: #1011146 high

Version 6.2.66~dfsg-2 of sympa is marked for autoremoval from testing on Thu 30 Jun 2022. It depends (transitively) on nvidia-graphics-drivers-tesla-470, affected by #1011146. You should try to prevent the removal by fixing these RC bugs.

Created: 2022-05-24 Last update: 2022-05-24 20:11

A new upstream version is available: 6.2.68 high

A new upstream version 6.2.68 is available, you should consider packaging it.

Created: 2022-01-28 Last update: 2022-05-24 17:27

lintian reports 1 error and 5 warnings high

Lintian reports 1 error and 5 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2021-04-11 Last update: 2022-01-01 04:35

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2020-26880: Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

Created: 2021-02-19 Last update: 2021-12-17 06:00

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2020-26880: Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

Created: 2021-08-15 Last update: 2021-12-17 06:00

2 bugs tagged patch in the BTS normal

The BTS contains patches fixing 2 bugs, consider including or untagging them.

Created: 2021-08-14 Last update: 2022-05-24 20:04

6 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 936b036e1e44b7dce2cb16782a6d3bb6f9b6877c
Merge: 7f125eec 63b650e0
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Jan 25 09:01:13 2022 +0100

    Update upstream source from tag 'upstream/6.2.68_dfsg'
    
    Update to upstream version '6.2.68~dfsg'
    with Debian dir 98b29ea4410ec63220250ea48ad259772642cbb3

commit 63b650e041461fae00d68563468ae47f4b2557b9
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Jan 25 09:01:03 2022 +0100

    New upstream version 6.2.68~dfsg

commit 7f125eec2cc63f463067b86286f5055d77dd06e0
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Sun Jan 9 16:10:47 2022 +0100

    Revert "Disable Perl 5.20 job due to installation failure of Crypt::OpenSSL::X509."
    
    This reverts commit 95b7c7e8bd0d8461a235732589e676f6e7fa3181.

commit 7e32b8136004468dc3091156974924241e3f0258
Merge: 20d590e0 95b7c7e8
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Sun Jan 9 13:13:29 2022 +0100

    Merge branch 'topic/gitlab-disable-perl5.20'

commit 95b7c7e8bd0d8461a235732589e676f6e7fa3181
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Sun Jan 9 12:53:18 2022 +0100

    Disable Perl 5.20 job due to installation failure of Crypt::OpenSSL::X509.
    See https://github.com/dsully/perl-crypt-openssl-x509/issues/95 for more
    information.

commit 20d590e0331eee14df8d52519f8adc8b881a6218
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Sat Jan 8 07:30:51 2022 +0100

    Update Italian translations for the Debconf templates (#1003287).

Created: 2022-01-08 Last update: 2022-05-24 01:06

1 low-priority security issue in buster low

There is 1 open security issue in buster.

1 issue left for the package maintainer to handle:

CVE-2020-26880: (postponed; to be fixed through a stable update) Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-02-19 Last update: 2021-12-17 06:00

1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:

CVE-2020-26880: (postponed; to be fixed through a stable update) Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-08-14 Last update: 2021-12-17 06:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.1 instead of 4.6.0).

Created: 2022-05-11 Last update: 2022-05-11 23:25

news

[rss feed]

[2021-12-17] sympa 6.2.66~dfsg-2 MIGRATED to testing (Debian testing watch)
[2021-12-11] Accepted sympa 6.2.66~dfsg-2 (source amd64) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-12-07] Accepted sympa 6.2.66~dfsg-1 (source amd64) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-02-18] sympa 6.2.60~dfsg-4 MIGRATED to testing (Debian testing watch)
[2021-02-07] Accepted sympa 6.2.60~dfsg-4 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-02-03] sympa 6.2.60~dfsg-3 MIGRATED to testing (Debian testing watch)
[2021-01-31] Accepted sympa 6.2.60~dfsg-3 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-01-25] sympa 6.2.60~dfsg-2 MIGRATED to testing (Debian testing watch)
[2021-01-20] Accepted sympa 6.2.60~dfsg-2 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-01-10] sympa 6.2.60~dfsg-1 MIGRATED to testing (Debian testing watch)
[2021-01-05] Accepted sympa 6.2.60~dfsg-1 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-01-05] sympa 6.2.58~dfsg-6 MIGRATED to testing (Debian testing watch)
[2020-12-30] Accepted sympa 6.2.58~dfsg-6 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-12-30] Accepted sympa 6.2.58~dfsg-5 (source) into experimental (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-12-29] Accepted sympa 6.2.58~dfsg-4 (source) into experimental (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-12-28] Accepted sympa 6.2.40~dfsg-1+deb10u1 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Sylvain Beucler)
[2020-12-23] Accepted sympa 6.2.40~dfsg-1+deb10u1 (source) into stable->embargoed, stable (Debian FTP Masters) (signed by: Sylvain Beucler)
[2020-12-17] Accepted sympa 6.2.16~dfsg-3+deb9u5 (source) into oldstable (Sylvain Beucler)
[2020-12-13] Accepted sympa 6.2.58~dfsg-3 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-11-28] Accepted sympa 6.2.58~dfsg-2 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-11-09] Accepted sympa 6.2.16~dfsg-3+deb9u4 (source) into oldstable (Sylvain Beucler)
[2020-10-25] Accepted sympa 6.2.58~dfsg-1 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-10-15] sympa 6.2.40~dfsg-7 MIGRATED to testing (Debian testing watch)
[2020-10-10] Accepted sympa 6.2.40~dfsg-7 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-10-07] Accepted sympa 6.2.16~dfsg-3+deb9u3 (source) into oldstable (Sylvain Beucler)
[2020-10-07] sympa 6.2.40~dfsg-6 MIGRATED to testing (Debian testing watch)
[2020-10-01] Accepted sympa 6.2.40~dfsg-6 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-09-30] sympa 6.2.40~dfsg-5 MIGRATED to testing (Debian testing watch)
[2020-09-25] Accepted sympa 6.2.40~dfsg-5 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-06-24] sympa REMOVED from testing (Debian testing watch)

bugs [bug history graph]

all: 31
RC: 0
I&N: 18
M&W: 12
F&P: 1
patch: 2

links

homepage
lintian (1, 5)
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (88, 41)

ubuntu

[Information about Ubuntu for Debian Developers]

version: 6.2.66~dfsg-2
30 bugs (2 patches)