Debian Package Tracker - unrar-nonfree

general

source: unrar-nonfree (non-free)
version: 1:5.6.6-2
maintainer: Martin Meredith [DMD] [LowNMU]
uploaders: Norbert Preining [DMD]
arch: any
std-ver: 4.2.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 1:5.2.7-0.1+deb8u1
stable: 1:5.3.2-1+deb9u1
testing: 1:5.6.6-1
unstable: 1:5.6.6-2

versioned links

1:5.2.7-0.1+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.3.2-1+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.6.6-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.6.6-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libunrar-dev
libunrar5
unrar (6 bugs: 0, 2, 4, 0)

action needed

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  http://www.rarlab.com/rar_add.htm http://www.rarlab.com/rar/unrarsrc-(.*)\.tar\.gz	debian	uupdate

Created: 2017-11-21 Last update: 2019-06-25 15:05

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2019-03-13 Last update: 2019-06-25 18:09

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2019-04-01 Last update: 2019-06-25 18:06

4 ignored security issues in jessie low

There are 4 open security issues in jessie.

4 issues skipped by the security teams:

CVE-2017-12942: libunrar.a in UnRAR before 5.5.7 has a buffer overflow in the Unpack::LongLZ function.
CVE-2017-12938: UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file.
CVE-2017-12941: libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Unpack::Unpack20 function.
CVE-2017-12940: libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the EncodeFileName::Decode call within the Archive::ReadHeader15 function.

Please fix them.

Created: 2017-08-18 Last update: 2019-03-03 04:41

4 ignored security issues in stretch low

There are 4 open security issues in stretch.

4 issues skipped by the security teams:

CVE-2017-12942: libunrar.a in UnRAR before 5.5.7 has a buffer overflow in the Unpack::LongLZ function.
CVE-2017-12938: UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file.
CVE-2017-12941: libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Unpack::Unpack20 function.
CVE-2017-12940: libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the EncodeFileName::Decode call within the Archive::ReadHeader15 function.

Please fix them.

Created: 2017-08-18 Last update: 2019-03-03 04:41

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2018-10-28 Last update: 2018-10-28 04:46

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.3.0 instead of 4.2.1).

Created: 2018-12-23 Last update: 2019-03-03 09:33

testing migrations

excuses:
- 114 days old (5 needed)
- Cannot be tested by piuparts (not a blocker) - (no link yet)
- Not touching package due to block request by freeze (please contact debian-release if update is needed)
- Not considered

news

[rss feed]

[2019-03-03] Accepted unrar-nonfree 1:5.6.6-2 (source amd64) into unstable (Norbert Preining)
[2018-11-05] unrar-nonfree 1:5.6.6-1 MIGRATED to testing (Debian testing watch)
[2018-10-27] Accepted unrar-nonfree 1:5.6.6-1 (source amd64) into unstable, unstable (Norbert Preining)
[2017-08-23] unrar-nonfree 1:5.5.8-1 MIGRATED to testing (Debian testing watch)
[2017-08-21] Accepted unrar-nonfree 1:5.5.8-1 (amd64 i386 source) into unstable (Martin Meredith)
[2017-07-05] Accepted unrar-nonfree 1:5.3.2-1+deb9u1 (source amd64) into proposed-updates->stable-new, proposed-updates (Felix Geyer)
[2017-07-05] Accepted unrar-nonfree 1:5.2.7-0.1+deb8u1 (source amd64) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Felix Geyer)
[2017-06-29] unrar-nonfree 1:5.5.5-1 MIGRATED to testing (Debian testing watch)
[2017-06-27] Accepted unrar-nonfree 1:4.1.4-1+deb7u2 (source amd64) into oldoldstable (Damian Lukowski) (signed by: Bastian Blank)
[2017-06-22] Accepted unrar-nonfree 1:5.5.5-1 (amd64 i386 source) into unstable (Martin Meredith)
[2017-06-20] unrar-nonfree 1:5.4.5-1 MIGRATED to testing (Debian testing watch)
[2017-02-13] Accepted unrar-nonfree 1:5.4.5-1 (amd64 i386 source) into unstable (Martin Meredith)
[2015-08-26] Accepted unrar-nonfree 1:4.1.4-1+deb7u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Felix Geyer)
[2015-08-16] unrar-nonfree 1:5.3.2-1 MIGRATED to testing (Britney)
[2015-08-10] Accepted unrar-nonfree 1:5.3.2-1 (amd64 i386 source) into unstable (Martin Meredith)
[2015-04-04] unrar-nonfree 1:5.2.7-0.1 MIGRATED to testing (Britney)
[2015-04-01] Accepted unrar-nonfree 1:5.2.7-0.1 (source) into unstable (Felix Geyer)
[2015-02-03] Accepted unrar-nonfree 1:5.2.5-1 (amd64 i386 source) into unstable (Martin Meredith)
[2013-08-26] unrar-nonfree 1:5.0.10-1 MIGRATED to testing (Debian testing watch)
[2013-08-15] Accepted unrar-nonfree 1:5.0.10-1 (source amd64) (Martin Meredith)
[2013-05-05] unrar-nonfree 1:4.2.4-0.3 MIGRATED to testing (Debian testing watch)
[2013-02-19] Accepted unrar-nonfree 1:4.2.4-0.3 (source all amd64) (Nick Andrik) (signed by: John Paul Adrian Glaubitz)
[2013-02-19] Accepted unrar-nonfree 1:4.2.4-0.2 (source all amd64) (Nick Andrik) (signed by: John Paul Adrian Glaubitz)
[2013-02-16] Accepted unrar-nonfree 1:4.2.4-0.1 (source all amd64) (Nick Andrik) (signed by: John Paul Adrian Glaubitz)
[2012-03-04] unrar-nonfree 1:4.1.4-1 MIGRATED to testing (Debian testing watch)
[2012-02-14] Accepted unrar-nonfree 1:4.1.4-1 (source i386 amd64) (Martin Meredith)
[2011-02-06] unrar-nonfree 1:4.0.3-1 MIGRATED to testing (Debian testing watch)
[2010-12-28] Accepted unrar-nonfree 1:4.0.3-1 (source i386 amd64) (Martin Meredith)
[2010-12-12] Accepted unrar-nonfree 1:4.0.2-1 (source i386 amd64) (Martin Meredith)
[2010-08-24] unrar-nonfree 1:3.9.10-1 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 7
RC: 0
I&N: 3
M&W: 4
F&P: 0
patch: 1

links

homepage
lintian
buildd: logs, checks, clang, cross
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1:5.6.6-2
4 bugs