varnish-modules - Debian Package Tracker

general

source: varnish-modules (main)
version: 0.16.0-2.1
maintainer: Varnish Package Maintainers (DMD)
uploaders: Emanuele Rocca [DMD] – Stig Sandbeck Mathisen [DMD]
arch: any
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 0.9.1-4
stable: 0.15.0-1
testing: 0.16.0-2.1
unstable: 0.16.0-2.1

versioned links

0.9.1-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.15.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.16.0-2.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

varnish-modules (1 bugs: 1, 0, 0, 0)

action needed

Marked for autoremoval on 24 April: #985947 high

Version 0.16.0-2.1 of varnish-modules is marked for autoremoval from testing on Sat 24 Apr 2021. It is affected by #985947. You should try to prevent the removal by fixing these RC bugs.

Created: 2021-04-02 Last update: 2021-04-14 22:36

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  https://github.com/varnish/varnish-modules/tags /varnish/varnish-modules/archive/(\d[\d.]*)\.tar\.gz debian uupdate

Created: 2021-03-20 Last update: 2021-04-14 22:36

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2021-28543: Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service (daemon restart) in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, an assertion failure or NULL pointer dereference can be triggered in Varnish Cache through the varnish-modules header.append() and header.copy() functions. For some Varnish Configuration Language (VCL) files, this gives remote clients an opportunity to cause a Varnish Cache restart. A restart reduces overall availability and performance due to an increased number of cache misses, and may cause higher load on backend servers.

Created: 2021-03-16 Last update: 2021-03-26 21:56

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2021-28543: Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service (daemon restart) in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, an assertion failure or NULL pointer dereference can be triggered in Varnish Cache through the varnish-modules header.append() and header.copy() functions. For some Varnish Configuration Language (VCL) files, this gives remote clients an opportunity to cause a Varnish Cache restart. A restart reduces overall availability and performance due to an increased number of cache misses, and may cause higher load on backend servers.

Created: 2021-03-16 Last update: 2021-03-26 21:56

Multiarch hinter reports 1 issue(s) normal

There are issues with the multiarch metadata for this package.

varnish-modules could be marked Multi-Arch: same

Created: 2020-07-23 Last update: 2021-04-14 22:38

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2021-03-30 Last update: 2021-04-14 20:02

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 0.16.0-3, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 2a26fffa93339b4947c5735d2e25ec3eb8fff6fd
Author: Stig Sandbeck Mathisen <ssm@debian.org>
Date:   Sun Sep 6 12:19:33 2020 +0200

    Set debhelper-compat version in Build-Depends.
    
    Changes-By: lintian-brush
    Fixes: lintian: uses-debhelper-compat-file
    See-also: https://lintian.debian.org/tags/uses-debhelper-compat-file.html

commit e3c9a0f3cb39c746995d20eaccfb668601306ff7
Author: Stig Sandbeck Mathisen <ssm@debian.org>
Date:   Sun Sep 6 12:19:33 2020 +0200

    Bump debhelper from old 10 to 12.
    
    Changes-By: lintian-brush
    Fixes: lintian: package-uses-old-debhelper-compat-version
    See-also: https://lintian.debian.org/tags/package-uses-old-debhelper-compat-version.html

commit 9de22ca444bcdf6f64a2fb1deb3d79ed66ae315f
Author: Stig Sandbeck Mathisen <ssm@debian.org>
Date:   Wed Jul 22 15:30:27 2020 +0200

    Remove build dependency on autotools-dev

commit e85440de65cf0884a9acda8c9cdc7a77c68ffe90
Author: Stig Sandbeck Mathisen <ssm@debian.org>
Date:   Wed Jul 22 15:18:20 2020 +0200

    Provide environment for dh_autoreconf

commit 8d2e429aadb2546ff8be6f441ae924ee1d2012fb
Author: Stig Sandbeck Mathisen <ssm@debian.org>
Date:   Wed Jul 22 14:58:26 2020 +0200

    Bump debhelper from deprecated 9 to 10.
    
    Changes-By: lintian-brush
    Fixes: lintian: package-uses-deprecated-debhelper-compat-version
    See-also: https://lintian.debian.org/tags/package-uses-deprecated-debhelper-compat-version.html

commit 3dcc1e8fd252527548c37c4ce31ae30aee7761be
Author: Stig Sandbeck Mathisen <ssm@debian.org>
Date:   Wed Jul 22 14:58:46 2020 +0200

    Prepare for next version

Created: 2020-09-30 Last update: 2021-04-13 05:35

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2021-01-27 Last update: 2021-01-27 03:05

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.1 instead of 4.5.0).

Created: 2020-11-17 Last update: 2020-11-17 05:41

news

[rss feed]

[2020-11-19] varnish-modules 0.16.0-2.1 MIGRATED to testing (Debian testing watch)
[2020-11-12] Accepted varnish-modules 0.16.0-2.1 (source) into unstable (Adrian Bunk)
[2020-07-24] varnish-modules 0.16.0-2 MIGRATED to testing (Debian testing watch)
[2020-07-22] Accepted varnish-modules 0.16.0-2 (source) into unstable (Stig Sandbeck Mathisen)
[2020-05-08] varnish-modules 0.16.0-1 MIGRATED to testing (Debian testing watch)
[2020-05-05] Accepted varnish-modules 0.16.0-1 (source) into unstable (Stig Sandbeck Mathisen)
[2019-10-19] varnish-modules REMOVED from testing (Debian testing watch)
[2018-12-26] varnish-modules 0.15.0-1 MIGRATED to testing (Debian testing watch)
[2018-12-24] Accepted varnish-modules 0.15.0-1 (source) into unstable (Stig Sandbeck Mathisen)
[2017-12-31] varnish-modules REMOVED from testing (Debian testing watch)
[2017-10-10] varnish-modules 0.12.1-1 MIGRATED to testing (Debian testing watch)
[2017-10-04] Accepted varnish-modules 0.12.1-1 (source amd64) into unstable (Emanuele Rocca)
[2017-09-03] varnish-modules REMOVED from testing (Debian testing watch)
[2016-09-26] varnish-modules 0.9.1-4 MIGRATED to testing (Debian testing watch)
[2016-09-20] Accepted varnish-modules 0.9.1-4 (source) into unstable (Stig Sandbeck Mathisen)
[2016-07-28] varnish-modules 0.9.1-3 MIGRATED to testing (Debian testing watch)
[2016-07-22] Accepted varnish-modules 0.9.1-3 (source i386) into unstable (Emanuele Rocca)
[2016-07-14] Accepted varnish-modules 0.9.1-2 (source amd64) into unstable (Emanuele Rocca)
[2016-07-11] Accepted varnish-modules 0.9.1-1 (source amd64) into unstable (Emanuele Rocca)
[2016-05-29] varnish-modules 0.9.0-3 MIGRATED to testing (Debian testing watch)
[2016-05-23] Accepted varnish-modules 0.9.0-3 (source) into unstable (Stig Sandbeck Mathisen)
[2016-03-14] varnish-modules 0.9.0-2 MIGRATED to testing (Debian testing watch)
[2016-03-08] Accepted varnish-modules 0.9.0-2 (source) into unstable (Stig Sandbeck Mathisen)
[2016-03-08] Accepted varnish-modules 0.9.0-1 (source amd64) into unstable, unstable (Stig Sandbeck Mathisen)

bugs [bug history graph]

all: 1
RC: 1
I&N: 0
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (0, 1)
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.16.0-2.1