Debian Package Tracker
Register | Log in
Subscribe

sympa

Modern mailing list manager

Choose email to subscribe with

general
  • source: sympa (main)
  • version: 6.2.66~dfsg-2
  • maintainer: Debian Sympa team (DMD)
  • uploaders: Stefan Hornburg (Racke) [DMD] – Emmanuel Bouthenot [DMD]
  • arch: any
  • std-ver: 4.6.0
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • o-o-stable: 6.2.16~dfsg-3+deb9u2
  • o-o-sec: 6.2.16~dfsg-3+deb9u5
  • oldstable: 6.2.40~dfsg-1+deb10u1
  • old-sec: 6.2.40~dfsg-1+deb10u1
  • stable: 6.2.60~dfsg-4
  • testing: 6.2.66~dfsg-2
  • unstable: 6.2.66~dfsg-2
versioned links
  • 6.2.16~dfsg-3+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 6.2.16~dfsg-3+deb9u5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 6.2.40~dfsg-1+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 6.2.60~dfsg-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 6.2.66~dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • sympa (29 bugs: 0, 17, 12, 0)
action needed
Marked for autoremoval on 30 June due to nvidia-graphics-drivers-tesla-470: #1011146 high
Version 6.2.66~dfsg-2 of sympa is marked for autoremoval from testing on Thu 30 Jun 2022. It depends (transitively) on nvidia-graphics-drivers-tesla-470, affected by #1011146. You should try to prevent the removal by fixing these RC bugs.
Created: 2022-05-24 Last update: 2022-05-24 20:11
A new upstream version is available: 6.2.68 high
A new upstream version 6.2.68 is available, you should consider packaging it.
Created: 2022-01-28 Last update: 2022-05-24 17:27
lintian reports 1 error and 5 warnings high
Lintian reports 1 error and 5 warnings about this package. You should make the package lintian clean getting rid of them.
Created: 2021-04-11 Last update: 2022-01-01 04:35
1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:
  • CVE-2020-26880: Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.
Created: 2021-02-19 Last update: 2021-12-17 06:00
1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:
  • CVE-2020-26880: Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.
Created: 2021-08-15 Last update: 2021-12-17 06:00
2 bugs tagged patch in the BTS normal
The BTS contains patches fixing 2 bugs, consider including or untagging them.
Created: 2021-08-14 Last update: 2022-05-24 20:04
6 new commits since last upload, is it time to release? normal
vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:
commit 936b036e1e44b7dce2cb16782a6d3bb6f9b6877c
Merge: 7f125eec 63b650e0
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Jan 25 09:01:13 2022 +0100

    Update upstream source from tag 'upstream/6.2.68_dfsg'
    
    Update to upstream version '6.2.68~dfsg'
    with Debian dir 98b29ea4410ec63220250ea48ad259772642cbb3

commit 63b650e041461fae00d68563468ae47f4b2557b9
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Tue Jan 25 09:01:03 2022 +0100

    New upstream version 6.2.68~dfsg

commit 7f125eec2cc63f463067b86286f5055d77dd06e0
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Sun Jan 9 16:10:47 2022 +0100

    Revert "Disable Perl 5.20 job due to installation failure of Crypt::OpenSSL::X509."
    
    This reverts commit 95b7c7e8bd0d8461a235732589e676f6e7fa3181.

commit 7e32b8136004468dc3091156974924241e3f0258
Merge: 20d590e0 95b7c7e8
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Sun Jan 9 13:13:29 2022 +0100

    Merge branch 'topic/gitlab-disable-perl5.20'

commit 95b7c7e8bd0d8461a235732589e676f6e7fa3181
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Sun Jan 9 12:53:18 2022 +0100

    Disable Perl 5.20 job due to installation failure of Crypt::OpenSSL::X509.
    See https://github.com/dsully/perl-crypt-openssl-x509/issues/95 for more
    information.

commit 20d590e0331eee14df8d52519f8adc8b881a6218
Author: Stefan Hornburg (Racke) <racke@linuxia.de>
Date:   Sat Jan 8 07:30:51 2022 +0100

    Update Italian translations for the Debconf templates (#1003287).
Created: 2022-01-08 Last update: 2022-05-24 01:06
1 low-priority security issue in buster low

There is 1 open security issue in buster.

1 issue left for the package maintainer to handle:
  • CVE-2020-26880: (postponed; to be fixed through a stable update) Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-02-19 Last update: 2021-12-17 06:00
1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:
  • CVE-2020-26880: (postponed; to be fixed through a stable update) Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-08-14 Last update: 2021-12-17 06:00
Standards version of the package is outdated. wishlist
The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.1 instead of 4.6.0).
Created: 2022-05-11 Last update: 2022-05-11 23:25
news
[rss feed]
  • [2021-12-17] sympa 6.2.66~dfsg-2 MIGRATED to testing (Debian testing watch)
  • [2021-12-11] Accepted sympa 6.2.66~dfsg-2 (source amd64) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2021-12-07] Accepted sympa 6.2.66~dfsg-1 (source amd64) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2021-02-18] sympa 6.2.60~dfsg-4 MIGRATED to testing (Debian testing watch)
  • [2021-02-07] Accepted sympa 6.2.60~dfsg-4 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2021-02-03] sympa 6.2.60~dfsg-3 MIGRATED to testing (Debian testing watch)
  • [2021-01-31] Accepted sympa 6.2.60~dfsg-3 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2021-01-25] sympa 6.2.60~dfsg-2 MIGRATED to testing (Debian testing watch)
  • [2021-01-20] Accepted sympa 6.2.60~dfsg-2 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2021-01-10] sympa 6.2.60~dfsg-1 MIGRATED to testing (Debian testing watch)
  • [2021-01-05] Accepted sympa 6.2.60~dfsg-1 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2021-01-05] sympa 6.2.58~dfsg-6 MIGRATED to testing (Debian testing watch)
  • [2020-12-30] Accepted sympa 6.2.58~dfsg-6 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2020-12-30] Accepted sympa 6.2.58~dfsg-5 (source) into experimental (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2020-12-29] Accepted sympa 6.2.58~dfsg-4 (source) into experimental (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2020-12-28] Accepted sympa 6.2.40~dfsg-1+deb10u1 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Sylvain Beucler)
  • [2020-12-23] Accepted sympa 6.2.40~dfsg-1+deb10u1 (source) into stable->embargoed, stable (Debian FTP Masters) (signed by: Sylvain Beucler)
  • [2020-12-17] Accepted sympa 6.2.16~dfsg-3+deb9u5 (source) into oldstable (Sylvain Beucler)
  • [2020-12-13] Accepted sympa 6.2.58~dfsg-3 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2020-11-28] Accepted sympa 6.2.58~dfsg-2 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2020-11-09] Accepted sympa 6.2.16~dfsg-3+deb9u4 (source) into oldstable (Sylvain Beucler)
  • [2020-10-25] Accepted sympa 6.2.58~dfsg-1 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2020-10-15] sympa 6.2.40~dfsg-7 MIGRATED to testing (Debian testing watch)
  • [2020-10-10] Accepted sympa 6.2.40~dfsg-7 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2020-10-07] Accepted sympa 6.2.16~dfsg-3+deb9u3 (source) into oldstable (Sylvain Beucler)
  • [2020-10-07] sympa 6.2.40~dfsg-6 MIGRATED to testing (Debian testing watch)
  • [2020-10-01] Accepted sympa 6.2.40~dfsg-6 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2020-09-30] sympa 6.2.40~dfsg-5 MIGRATED to testing (Debian testing watch)
  • [2020-09-25] Accepted sympa 6.2.40~dfsg-5 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
  • [2020-06-24] sympa REMOVED from testing (Debian testing watch)
  • 1
  • 2
bugs [bug history graph]
  • all: 31
  • RC: 0
  • I&N: 18
  • M&W: 12
  • F&P: 1
  • patch: 2
links
  • homepage
  • lintian (1, 5)
  • buildd: logs, clang, reproducibility, cross
  • popcon
  • browse source code
  • edit tags
  • other distros
  • security tracker
  • screenshots
  • l10n (88, 41)
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 6.2.66~dfsg-2
  • 30 bugs (2 patches)

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing