Debian Package Tracker
Register | Log in
Subscribe

xrdp

Remote Desktop Protocol (RDP) server

Choose email to subscribe with

general
  • source: xrdp (main)
  • version: 0.9.6-1
  • maintainer: Debian Remote Maintainers (archive) [DMD]
  • uploaders: Dominik George [DMD] – Andreas Tille [DMD] – Thorsten Glaser [DMD] – Mike Gabriel [DMD]
  • arch: any
  • std-ver: 4.1.3
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • o-o-stable: 0.5.0-2
  • o-o-sec: 0.5.0-2+deb7u3
  • oldstable: 0.6.1-2
  • old-bpo: 0.9.1-9~bpo8+1
  • stable: 0.9.1-9+deb9u2
  • stable-bpo: 0.9.6-1~bpo9+1
  • testing: 0.9.6-1
  • unstable: 0.9.6-1
versioned links
  • 0.5.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 0.5.0-2+deb7u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 0.6.1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 0.9.1-9~bpo8+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 0.9.1-9+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 0.9.4-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 0.9.6-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 0.9.6-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • xrdp
  • xrdp-pulseaudio-installer
action needed
1 bug tagged patch in the BTS normal
The BTS contains patches fixing 1 bug, consider including or untagging them.
Created: 2018-01-29 Last update: 2018-04-24 19:46
2 new commits since last upload, time to release an update? normal
vcswatch reports that this package seems to have new commits in its VCS. You should consider updating the debian/changelog and uploading this new version into the archive.

Created: 2018-04-13 Last update: 2018-04-15 02:43
1 ignored security issue in wheezy low
There is 1 open security issue in wheezy.
1 issue skipped by the security teams:
  • CVE-2013-1430: An issue was discovered in xrdp before 0.9.1. When successfully logging in using RDP into an xrdp session, the file ~/.vnc/sesman_${username}_passwd is created. Its content is the equivalent of the user's cleartext password, DES encrypted with a known key.
Please fix it.
Created: 2016-12-11 Last update: 2018-04-06 08:01
3 ignored security issues in jessie low
There are 3 open security issues in jessie.
3 issues skipped by the security teams:
  • CVE-2017-16927: The scp_v0s_accept function in sesman/libscp/libscp_v0.c in the session manager in xrdp through 0.9.4 uses an untrusted integer as a write length, which allows local users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted input stream.
  • CVE-2017-6967: xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized, with a potential consequence of incorrect configurations or elevation of privileges, aka a pam_limits.so bypass.
  • CVE-2013-1430: An issue was discovered in xrdp before 0.9.1. When successfully logging in using RDP into an xrdp session, the file ~/.vnc/sesman_${username}_passwd is created. Its content is the equivalent of the user's cleartext password, DES encrypted with a known key.
Please fix them.
Created: 2016-12-11 Last update: 2018-04-06 08:01
Standards version of the package is outdated. wishlist
The package should be updated to follow the last version of Debian Policy (Standards-Version 4.1.4 instead of 4.1.3).
Created: 2018-04-14 Last update: 2018-04-16 20:49
news
[rss feed]
  • [2018-04-13] Accepted xrdp 0.9.6-1~bpo9+1 (source amd64) into stretch-backports, stretch-backports (Dominik George)
  • [2018-04-06] xrdp 0.9.6-1 MIGRATED to testing (Debian testing watch)
  • [2018-03-31] Accepted xrdp 0.9.6-1 (source) into unstable (Dominik George)
  • [2018-02-23] Accepted xrdp 0.9.1-9+deb9u2 (source amd64) into proposed-updates->stable-new, proposed-updates (Dominik George)
  • [2018-02-22] xrdp 0.9.5-2 MIGRATED to testing (Debian testing watch)
  • [2018-02-16] Accepted xrdp 0.9.5-2 (source amd64) into unstable (Dominik George)
  • [2018-01-13] xrdp 0.9.5-1 MIGRATED to testing (Debian testing watch)
  • [2018-01-07] Accepted xrdp 0.9.5-1 (source amd64) into unstable (Dominik George)
  • [2017-12-25] xrdp 0.9.4-5 MIGRATED to testing (Debian testing watch)
  • [2017-12-22] Accepted xrdp 0.9.4-5 (source i386) into unstable, unstable (Thorsten Glaser)
  • [2017-12-22] Accepted xrdp 0.9.4-4 (source i386) into unstable (Thorsten Glaser)
  • [2017-12-21] Accepted xrdp 0.9.4-3 (source amd64) into unstable (Dominik George)
  • [2017-12-17] xrdp 0.9.4-2 MIGRATED to testing (Debian testing watch)
  • [2017-12-15] Accepted xrdp 0.9.4-2 (source amd64) into unstable (Dominik George)
  • [2017-12-12] Accepted xrdp 0.5.0-2+deb7u3 (source amd64) into oldoldstable (Lucas Kanashiro)
  • [2017-12-11] Accepted xrdp 0.5.0-2+deb7u2 (source amd64) into oldoldstable (Lucas Kanashiro)
  • [2017-11-18] Accepted xrdp 0.9.1-9+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Dominik George)
  • [2017-10-25] Accepted xrdp 0.9.4-1~bpo9+1 (source i386) into stretch-backports, stretch-backports (Dominik George) (signed by: Thorsten Glaser)
  • [2017-10-25] Accepted xrdp 0.9.1-9~bpo8+1 (source i386) into jessie-backports->backports-policy, jessie-backports (Thorsten Glaser)
  • [2017-10-15] xrdp 0.9.4-1 MIGRATED to testing (Debian testing watch)
  • [2017-10-09] Accepted xrdp 0.9.4-1 (source amd64) into unstable (Dominik George)
  • [2017-05-08] xrdp 0.9.1-9 MIGRATED to testing (Debian testing watch)
  • [2017-05-04] Accepted xrdp 0.9.1-9 (source) into unstable (Dominik George)
  • [2017-04-27] xrdp 0.9.1-8 MIGRATED to testing (Debian testing watch)
  • [2017-04-24] Accepted xrdp 0.9.1-8 (source) into unstable (Dominik George)
  • [2017-03-27] Accepted xrdp 0.5.0-2+deb7u1 (source i386) into oldstable (Markus Koschany)
  • [2017-03-25] Accepted xrdp 0.9.2~20170325-1~exp1 (source) into experimental (Thorsten Glaser)
  • [2017-02-24] xrdp 0.9.1-7 MIGRATED to testing (Debian testing watch)
  • [2017-02-18] Accepted xrdp 0.9.1-7 (source) into unstable (Dominik George)
  • [2017-02-13] Accepted xrdp 0.9.1-6 (source) into unstable (Dominik George)
  • 1
  • 2
bugs [bug history graph]
  • all: 8 9
  • RC: 0
  • I&N: 7 8
  • M&W: 1
  • F&P: 0
links
  • homepage
  • lintian
  • buildd: logs, clang, reproducibility
  • popcon
  • browse source code
  • edit tags
  • security tracker
  • screenshots
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 0.9.5-2
  • 43 bugs (2 patches)

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing