Debian Package Tracker - unrar-nonfree

general

source: unrar-nonfree (non-free)
version: 1:5.6.6-2
maintainer: Martin Meredith (DMD) (LowNMU)
uploaders: Norbert Preining [DMD]
arch: any
std-ver: 4.2.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1:5.2.7-0.1+deb8u1
oldstable: 1:5.3.2-1+deb9u1
stable: 1:5.6.6-1
testing: 1:5.6.6-2
unstable: 1:5.6.6-2

versioned links

1:5.2.7-0.1+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.3.2-1+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.6.6-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.6.6-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libunrar-dev
libunrar5
unrar (7 bugs: 0, 3, 4, 0)

action needed

Debci reports failed tests high

unstable: fail (log)
The tests ran in 0:00:18
Last run: 2018-07-09 08:21:59 UTC
Previous status: unknown

Created: 2020-04-20 Last update: 2020-06-06 15:08

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  http://www.rarlab.com/rar_add.htm http://www.rarlab.com/rar/unrarsrc-(.*)\.tar\.gz	debian	uupdate

Created: 2017-11-21 Last update: 2020-06-06 12:14

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2020-02-26 Last update: 2020-06-06 15:03

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 1:5.6.6-3, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit c7a73bcbf0c3cce54cf52d6961f39289723002d3
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Tue Jun 2 04:25:21 2020 +0000

    Wrap long lines in changelog entries: 1:3.6.8-0ubuntu2. (#2)
    
    Fixes: lintian: debian-changelog-line-too-long
    See-also: https://lintian.debian.org/tags/debian-changelog-line-too-long.html

commit d1e8b9a01bb775d989bffbf9a8b4fd805f3f8fe2
Author: Debian Janitor <44550737+debian-janitor@users.noreply.github.com>
Date:   Wed Dec 25 02:14:57 2019 +0000

    Fix some issues reported by lintian
    
    * Trim trailing whitespace.
    
    Fixes lintian: file-contains-trailing-whitespace
    See https://lintian.debian.org/tags/file-contains-trailing-whitespace.html for more details.
    
    * Bump debhelper from old 9 to 12.
    
    Fixes lintian: package-uses-old-debhelper-compat-version
    See https://lintian.debian.org/tags/package-uses-old-debhelper-compat-version.html for more details.
    
    * Set debhelper-compat version in Build-Depends.
    
    Fixes lintian: uses-debhelper-compat-file
    See https://lintian.debian.org/tags/uses-debhelper-compat-file.html for more details.

Created: 2019-12-25 Last update: 2020-06-06 09:08

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2020-05-21 Last update: 2020-05-21 00:09

4 ignored security issues in jessie low

There are 4 open security issues in jessie.

4 issues skipped by the security teams:

CVE-2017-12940: libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the EncodeFileName::Decode call within the Archive::ReadHeader15 function.
CVE-2017-12941: libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Unpack::Unpack20 function.
CVE-2017-12942: libunrar.a in UnRAR before 5.5.7 has a buffer overflow in the Unpack::LongLZ function.
CVE-2017-12938: UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file.

Please fix them.

Created: 2017-08-18 Last update: 2019-10-21 00:30

4 ignored security issues in stretch low

There are 4 open security issues in stretch.

4 issues skipped by the security teams:

CVE-2017-12940: libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the EncodeFileName::Decode call within the Archive::ReadHeader15 function.
CVE-2017-12941: libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Unpack::Unpack20 function.
CVE-2017-12942: libunrar.a in UnRAR before 5.5.7 has a buffer overflow in the Unpack::LongLZ function.
CVE-2017-12938: UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file.

Please fix them.

Created: 2017-08-18 Last update: 2019-10-21 00:30

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2018-10-28 Last update: 2018-10-28 04:46

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.2.1).

Created: 2018-12-23 Last update: 2020-01-21 05:06

news

[rss feed]

[2019-07-09] unrar-nonfree 1:5.6.6-2 MIGRATED to testing (Debian testing watch)
[2019-03-03] Accepted unrar-nonfree 1:5.6.6-2 (source amd64) into unstable (Norbert Preining)
[2018-11-05] unrar-nonfree 1:5.6.6-1 MIGRATED to testing (Debian testing watch)
[2018-10-27] Accepted unrar-nonfree 1:5.6.6-1 (source amd64) into unstable, unstable (Norbert Preining)
[2017-08-23] unrar-nonfree 1:5.5.8-1 MIGRATED to testing (Debian testing watch)
[2017-08-21] Accepted unrar-nonfree 1:5.5.8-1 (amd64 i386 source) into unstable (Martin Meredith)
[2017-07-05] Accepted unrar-nonfree 1:5.3.2-1+deb9u1 (source amd64) into proposed-updates->stable-new, proposed-updates (Felix Geyer)
[2017-07-05] Accepted unrar-nonfree 1:5.2.7-0.1+deb8u1 (source amd64) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Felix Geyer)
[2017-06-29] unrar-nonfree 1:5.5.5-1 MIGRATED to testing (Debian testing watch)
[2017-06-27] Accepted unrar-nonfree 1:4.1.4-1+deb7u2 (source amd64) into oldoldstable (Damian Lukowski) (signed by: Bastian Blank)
[2017-06-22] Accepted unrar-nonfree 1:5.5.5-1 (amd64 i386 source) into unstable (Martin Meredith)
[2017-06-20] unrar-nonfree 1:5.4.5-1 MIGRATED to testing (Debian testing watch)
[2017-02-13] Accepted unrar-nonfree 1:5.4.5-1 (amd64 i386 source) into unstable (Martin Meredith)
[2015-08-26] Accepted unrar-nonfree 1:4.1.4-1+deb7u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Felix Geyer)
[2015-08-16] unrar-nonfree 1:5.3.2-1 MIGRATED to testing (Britney)
[2015-08-10] Accepted unrar-nonfree 1:5.3.2-1 (amd64 i386 source) into unstable (Martin Meredith)
[2015-04-04] unrar-nonfree 1:5.2.7-0.1 MIGRATED to testing (Britney)
[2015-04-01] Accepted unrar-nonfree 1:5.2.7-0.1 (source) into unstable (Felix Geyer)
[2015-02-03] Accepted unrar-nonfree 1:5.2.5-1 (amd64 i386 source) into unstable (Martin Meredith)
[2013-08-26] unrar-nonfree 1:5.0.10-1 MIGRATED to testing (Debian testing watch)
[2013-08-15] Accepted unrar-nonfree 1:5.0.10-1 (source amd64) (Martin Meredith)
[2013-05-05] unrar-nonfree 1:4.2.4-0.3 MIGRATED to testing (Debian testing watch)
[2013-02-19] Accepted unrar-nonfree 1:4.2.4-0.3 (source all amd64) (Nick Andrik) (signed by: John Paul Adrian Glaubitz)
[2013-02-19] Accepted unrar-nonfree 1:4.2.4-0.2 (source all amd64) (Nick Andrik) (signed by: John Paul Adrian Glaubitz)
[2013-02-16] Accepted unrar-nonfree 1:4.2.4-0.1 (source all amd64) (Nick Andrik) (signed by: John Paul Adrian Glaubitz)
[2012-03-04] unrar-nonfree 1:4.1.4-1 MIGRATED to testing (Debian testing watch)
[2012-02-14] Accepted unrar-nonfree 1:4.1.4-1 (source i386 amd64) (Martin Meredith)
[2011-02-06] unrar-nonfree 1:4.0.3-1 MIGRATED to testing (Debian testing watch)
[2010-12-28] Accepted unrar-nonfree 1:4.0.3-1 (source i386 amd64) (Martin Meredith)
[2010-12-12] Accepted unrar-nonfree 1:4.0.2-1 (source i386 amd64) (Martin Meredith)

bugs [bug history graph]

all: 8
RC: 0
I&N: 4
M&W: 4
F&P: 0
patch: 1

links

homepage
lintian (0, 1)
buildd: logs, checks, clang, cross
popcon
browse source code
edit tags
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1:5.6.6-2build1
4 bugs