sympa - Debian Package Tracker

general

source: sympa (main)
version: 6.2.70~dfsg-2
maintainer: Debian Sympa team (DMD)
uploaders: Emmanuel Bouthenot [DMD] – Stefan Hornburg (Racke) [DMD]
arch: any
std-ver: 4.6.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 6.2.40~dfsg-1+deb10u1
o-o-sec: 6.2.40~dfsg-1+deb10u1
oldstable: 6.2.60~dfsg-4
old-bpo: 6.2.70~dfsg-1~bpo11+1
stable: 6.2.70~dfsg-2
testing: 6.2.70~dfsg-2
unstable: 6.2.70~dfsg-2

versioned links

6.2.40~dfsg-1+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.60~dfsg-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.70~dfsg-1~bpo11+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.70~dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

sympa (26 bugs: 0, 14, 12, 0)

action needed

A new upstream version is available: 6.2.72 high

A new upstream version 6.2.72 is available, you should consider packaging it.

Created: 2023-06-04 Last update: 2023-10-08 02:42

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2020-26880: Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

Created: 2022-07-04 Last update: 2023-06-11 06:30

1 security issue in trixie high

There is 1 open security issue in trixie.

1 important issue:

CVE-2020-26880: Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

Created: 2023-06-11 Last update: 2023-06-11 06:30

2 bugs tagged patch in the BTS normal

The BTS contains patches fixing 2 bugs, consider including or untagging them.

Created: 2023-09-13 Last update: 2023-10-08 02:34

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 6.2.72~dfsg-1, distribution unstable) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit a153e3132e7ee6e27b923a56df57eece8b09d90d
Author: Emmanuel Bouthenot <kolter@openics.org>
Date:   Thu Sep 28 22:07:11 2023 +0000

    Update changelog

commit 8ce23e6d2f62ec7d1e31cbcb57ba769484f9d18a
Author: Emmanuel Bouthenot <kolter@openics.org>
Date:   Thu Sep 28 22:04:15 2023 +0000

    Remove upgrade_bulk_spool.pl call from postinst, no longer supported

commit 39d36393ef0ad5cf692aa2add6396c921f7a3d47
Author: Emmanuel Bouthenot <kolter@openics.org>
Date:   Thu Sep 28 22:03:25 2023 +0000

    Update packaging, remove obsolete files

commit 161f9b9fce8c3e0d34ef045f57eb54d0f6fc865d
Author: Emmanuel Bouthenot <kolter@openics.org>
Date:   Thu Sep 28 22:02:49 2023 +0000

    Remove all patches (merged upstream)

commit e383e51c4efa49bcde10d7168975b358d840a222
Merge: a976b130 cf55a592
Author: Emmanuel Bouthenot <kolter@openics.org>
Date:   Thu Sep 28 20:27:43 2023 +0000

    Update upstream source from tag 'upstream/6.2.72_dfsg'
    
    Update to upstream version '6.2.72~dfsg'
    with Debian dir 8b8d9816d7245971c48ae260afbad8c107aa57b8

commit cf55a592fa6cd555ce5e411c5b886fe477cd2fdf
Author: Emmanuel Bouthenot <kolter@openics.org>
Date:   Thu Sep 28 20:27:43 2023 +0000

    New upstream version 6.2.72~dfsg

Created: 2023-09-28 Last update: 2023-10-04 23:40

lintian reports 2 warnings normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2022-11-16 Last update: 2023-02-03 15:06

1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:

CVE-2020-26880: (postponed; to be fixed through a stable update) Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

You can find information about how to handle this issue in the security team's documentation.

Created: 2022-07-04 Last update: 2023-06-11 06:30

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2020-26880: (postponed; to be fixed through a stable update) Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable.

You can find information about how to handle this issue in the security team's documentation.

Created: 2023-06-10 Last update: 2023-06-11 06:30

news

[rss feed]

[2023-02-01] sympa 6.2.70~dfsg-2 MIGRATED to testing (Debian testing watch)
[2023-01-26] Accepted sympa 6.2.70~dfsg-2 (source) into unstable (Emmanuel Bouthenot)
[2022-12-08] Accepted sympa 6.2.70~dfsg-1~bpo11+1 (source amd64) into bullseye-backports (Debian FTP Masters) (signed by: Emmanuel Bouthenot)
[2022-11-21] sympa 6.2.70~dfsg-1 MIGRATED to testing (Debian testing watch)
[2022-11-15] Accepted sympa 6.2.70~dfsg-1 (source) into unstable (Emmanuel Bouthenot)
[2022-11-15] sympa 6.2.68~dfsg-1 MIGRATED to testing (Debian testing watch)
[2022-11-09] Accepted sympa 6.2.68~dfsg-1 (source) into unstable (Emmanuel Bouthenot)
[2021-12-17] sympa 6.2.66~dfsg-2 MIGRATED to testing (Debian testing watch)
[2021-12-11] Accepted sympa 6.2.66~dfsg-2 (source amd64) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-12-07] Accepted sympa 6.2.66~dfsg-1 (source amd64) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-02-18] sympa 6.2.60~dfsg-4 MIGRATED to testing (Debian testing watch)
[2021-02-07] Accepted sympa 6.2.60~dfsg-4 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-02-03] sympa 6.2.60~dfsg-3 MIGRATED to testing (Debian testing watch)
[2021-01-31] Accepted sympa 6.2.60~dfsg-3 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-01-25] sympa 6.2.60~dfsg-2 MIGRATED to testing (Debian testing watch)
[2021-01-20] Accepted sympa 6.2.60~dfsg-2 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-01-10] sympa 6.2.60~dfsg-1 MIGRATED to testing (Debian testing watch)
[2021-01-05] Accepted sympa 6.2.60~dfsg-1 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2021-01-05] sympa 6.2.58~dfsg-6 MIGRATED to testing (Debian testing watch)
[2020-12-30] Accepted sympa 6.2.58~dfsg-6 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-12-30] Accepted sympa 6.2.58~dfsg-5 (source) into experimental (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-12-29] Accepted sympa 6.2.58~dfsg-4 (source) into experimental (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-12-28] Accepted sympa 6.2.40~dfsg-1+deb10u1 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Sylvain Beucler)
[2020-12-23] Accepted sympa 6.2.40~dfsg-1+deb10u1 (source) into stable->embargoed, stable (Debian FTP Masters) (signed by: Sylvain Beucler)
[2020-12-17] Accepted sympa 6.2.16~dfsg-3+deb9u5 (source) into oldstable (Sylvain Beucler)
[2020-12-13] Accepted sympa 6.2.58~dfsg-3 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-11-28] Accepted sympa 6.2.58~dfsg-2 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-11-09] Accepted sympa 6.2.16~dfsg-3+deb9u4 (source) into oldstable (Sylvain Beucler)
[2020-10-25] Accepted sympa 6.2.58~dfsg-1 (source) into unstable (Stefan Hornburg (Racke)) (signed by: Stefan Hornburg)
[2020-10-15] sympa 6.2.40~dfsg-7 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 27
RC: 0
I&N: 15
M&W: 12
F&P: 0
patch: 2

links

homepage
lintian (0, 2)
buildd: logs, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (90, 41)
debian patches

ubuntu

[Information about Ubuntu for Debian Developers]

version: 6.2.70~dfsg-2
31 bugs (2 patches)