sympa - Debian Package Tracker

general

source: sympa (main)
version: 6.2.60~dfsg-4
maintainer: Debian Sympa team (DMD)
uploaders: Stefan Hornburg (Racke) [DMD] – Emmanuel Bouthenot [DMD]
arch: any
std-ver: 4.5.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 6.2.16~dfsg-3+deb9u2
o-o-sec: 6.2.16~dfsg-3+deb9u5
oldstable: 6.2.40~dfsg-1+deb10u1
old-sec: 6.2.40~dfsg-1+deb10u1
stable: 6.2.60~dfsg-4
testing: 6.2.60~dfsg-4
unstable: 6.2.60~dfsg-4

versioned links

6.2.16~dfsg-3+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.16~dfsg-3+deb9u5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.40~dfsg-1+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.60~dfsg-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

sympa (35 bugs: 0, 20, 15, 0)

action needed

A new upstream version is available: 6.2.64 high

A new upstream version 6.2.64 is available, you should consider packaging it.

Created: 2021-04-29 Last update: 2021-09-17 20:37

lintian reports 5 errors and 3 warnings high

Lintian reports 5 errors and 3 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2021-04-11 Last update: 2021-09-06 18:35

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2020-26880: Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

Created: 2021-02-19 Last update: 2021-08-15 00:00

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2020-26880: Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

Created: 2021-08-15 Last update: 2021-08-15 00:00

4 bugs tagged patch in the BTS normal

The BTS contains patches fixing 4 bugs, consider including or untagging them.

Created: 2021-08-14 Last update: 2021-09-17 20:33

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 6.2.62~dfsg-1, distribution experimental) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 51161a2ec9f71f14345410d82dc68d6c98b3bd66
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Wed Apr 28 06:23:04 2021 +0200

    Update changelog with solution for #987127.

commit e17012877a4ea2de1df9ca1c77984661bf662a3a
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Wed Apr 28 06:20:01 2021 +0200

    Update Apache configuration to work with new systemd units (#987127).

commit 5e5cf046648d24907b23a619cf02b002e4cc2142
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Apr 27 14:05:20 2021 +0200

    Update changelog with solution for #986385.

commit 067161653738894661404556f61a15d164d2ea8b
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Apr 27 13:07:21 2021 +0200

    Add systemd units for WWSympa (#986385).

commit 9faf2bfa13c388f856fbcc266feb4ec9f841abff
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Apr 27 10:40:36 2021 +0200

    Add changelog entry for new upstream release 6.2.62 (#987657).

commit a71a0ac08983ef85180c297c14b29e8b5e786095
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Apr 27 10:28:11 2021 +0200

    Remove backtick patch (#980451).

commit 74553e3c4ca5278b295205938ccd2c58df3168b4
Merge: f34a733 097de15
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Apr 27 09:17:30 2021 +0200

    Update upstream source from tag 'upstream/6.2.62_dfsg'
    
    Update to upstream version '6.2.62~dfsg'
    with Debian dir 3f6a8d8d3ba6a74e133959aebabd3692cc8c9e74

commit 097de1594c7ce721c4063d92636068b6853224c3
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Apr 27 09:17:13 2021 +0200

    New upstream version 6.2.62~dfsg

Created: 2021-04-29 Last update: 2021-09-11 10:09

1 low-priority security issue in buster low

There is 1 open security issue in buster.

1 issue left for the package maintainer to handle:

CVE-2020-26880: (postponed; to be fixed through a stable update) Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-02-19 Last update: 2021-08-15 00:00

1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:

CVE-2020-26880: (postponed; to be fixed through a stable update) Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-08-14 Last update: 2021-08-15 00:00

Issues found with some translations low

Automatic checks made by the Debian l10n team found some issues with the translations contained in this package. You should check the l10n status report for more information.

Issues can be things such as missing translations, problematic translated strings, outdated PO files, unknown languages, etc.

Created: 2020-11-16 Last update: 2021-01-01 05:27

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.0 instead of 4.5.1).

Created: 2021-08-18 Last update: 2021-08-18 14:02

news

[rss feed]

[2021-02-18] sympa 6.2.60~dfsg-4 MIGRATED to testing (Debian testing watch)
[2021-02-07] Accepted sympa 6.2.60~dfsg-4 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-02-03] sympa 6.2.60~dfsg-3 MIGRATED to testing (Debian testing watch)
[2021-01-31] Accepted sympa 6.2.60~dfsg-3 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-01-25] sympa 6.2.60~dfsg-2 MIGRATED to testing (Debian testing watch)
[2021-01-20] Accepted sympa 6.2.60~dfsg-2 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-01-10] sympa 6.2.60~dfsg-1 MIGRATED to testing (Debian testing watch)
[2021-01-05] Accepted sympa 6.2.60~dfsg-1 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-01-05] sympa 6.2.58~dfsg-6 MIGRATED to testing (Debian testing watch)
[2020-12-30] Accepted sympa 6.2.58~dfsg-6 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-12-30] Accepted sympa 6.2.58~dfsg-5 (source) into experimental (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-12-29] Accepted sympa 6.2.58~dfsg-4 (source) into experimental (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-12-28] Accepted sympa 6.2.40~dfsg-1+deb10u1 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Sylvain Beucler)
[2020-12-23] Accepted sympa 6.2.40~dfsg-1+deb10u1 (source) into stable->embargoed, stable (Debian FTP Masters) (signed by: Sylvain Beucler)
[2020-12-17] Accepted sympa 6.2.16~dfsg-3+deb9u5 (source) into oldstable (Sylvain Beucler)
[2020-12-13] Accepted sympa 6.2.58~dfsg-3 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-11-28] Accepted sympa 6.2.58~dfsg-2 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-11-09] Accepted sympa 6.2.16~dfsg-3+deb9u4 (source) into oldstable (Sylvain Beucler)
[2020-10-25] Accepted sympa 6.2.58~dfsg-1 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-10-15] sympa 6.2.40~dfsg-7 MIGRATED to testing (Debian testing watch)
[2020-10-10] Accepted sympa 6.2.40~dfsg-7 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-10-07] Accepted sympa 6.2.16~dfsg-3+deb9u3 (source) into oldstable (Sylvain Beucler)
[2020-10-07] sympa 6.2.40~dfsg-6 MIGRATED to testing (Debian testing watch)
[2020-10-01] Accepted sympa 6.2.40~dfsg-6 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-09-30] sympa 6.2.40~dfsg-5 MIGRATED to testing (Debian testing watch)
[2020-09-25] Accepted sympa 6.2.40~dfsg-5 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-06-24] sympa REMOVED from testing (Debian testing watch)
[2020-03-02] sympa 6.2.40~dfsg-4 MIGRATED to testing (Debian testing watch)
[2020-02-25] Accepted sympa 6.2.40~dfsg-4 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2019-09-12] sympa 6.2.40~dfsg-3 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 38
RC: 0
I&N: 21
M&W: 15
F&P: 2
patch: 4

links

homepage
lintian (5, 3)
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (87, 40)

ubuntu

[Information about Ubuntu for Debian Developers]

version: 6.2.60~dfsg-4build1
29 bugs (1 patch)