Debian Package Tracker

general

source: xrdp (main)
version: 0.9.12-1
maintainer: Debian Remote Maintainers (archive) (DMD)
uploaders: Dominik George [DMD] – Andreas Tille [DMD] – Thorsten Glaser [DMD] – Mike Gabriel [DMD]
arch: any
std-ver: 4.4.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.6.1-2
oldstable: 0.9.1-9+deb9u3
old-bpo: 0.9.8-2~bpo9+1
stable: 0.9.9-1
testing: 0.9.12-1
unstable: 0.9.12-1

versioned links

0.6.1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.9.1-9+deb9u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.9.8-2~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.9.9-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.9.12-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

xrdp (10 bugs: 0, 9, 1, 0)

action needed

A new upstream version is available: 0.9.13 high

A new upstream version 0.9.13 is available, you should consider packaging it.

Created: 2020-05-02 Last update: 2020-05-27 06:32

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2020-02-26 Last update: 2020-05-27 10:33

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 0.9.12-2, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit c11a0a82a31e3a5290d4ba8bebdc60ebe2860abe
Author: mirabilos <tg@debian.org>
Date:   Tue Feb 18 06:12:37 2020 +0100

    replace xrdp-pulseaudio-installer mentions by current info

commit 6901a93cd9d6f83a671307821aedded4389f1292
Author: mirabilos <tg@debian.org>
Date:   Tue Feb 18 04:54:24 2020 +0100

    do not source /etc/profile twice in startwm.sh
    
    fixup for commit 925c6116 (accidental mismerge)

Created: 2020-02-18 Last update: 2020-05-23 07:34

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2020-05-21 Last update: 2020-05-21 00:09

3 ignored security issues in jessie low

There are 3 open security issues in jessie.

3 issues skipped by the security teams:

CVE-2017-16927: The scp_v0s_accept function in sesman/libscp/libscp_v0.c in the session manager in xrdp through 0.9.4 uses an untrusted integer as a write length, which allows local users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted input stream.
CVE-2017-6967: xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized, with a potential consequence of incorrect configurations or elevation of privileges, aka a pam_limits.so bypass.
CVE-2013-1430: An issue was discovered in xrdp before 0.9.1. When successfully logging in using RDP into an xrdp session, the file ~/.vnc/sesman_${username}_passwd is created. Its content is the equivalent of the user's cleartext password, DES encrypted with a known key.

Please fix them.

Created: 2016-12-11 Last update: 2020-01-21 08:04

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.4.1).

Created: 2020-01-21 Last update: 2020-01-21 05:06

news

[rss feed]

[2020-01-21] xrdp 0.9.12-1 MIGRATED to testing (Debian testing watch)
[2020-01-11] Accepted xrdp 0.9.12-1 (source) into unstable (Thorsten Glaser)
[2019-01-18] xrdp 0.9.9-1 MIGRATED to testing (Debian testing watch)
[2019-01-13] Accepted xrdp 0.9.9-1 (source amd64) into unstable (Dominik George)
[2018-10-02] Accepted xrdp 0.9.8-2~bpo9+1 (source) into stretch-backports (Dominik George)
[2018-10-02] xrdp 0.9.8-2 MIGRATED to testing (Debian testing watch)
[2018-09-27] Accepted xrdp 0.9.8-2 (source) into unstable (Dominik George)
[2018-09-26] Accepted xrdp 0.9.8-1 (source) into unstable (Dominik George)
[2018-08-06] xrdp REMOVED from testing (Debian testing watch)
[2018-07-07] Accepted xrdp 0.9.1-9+deb9u3 (source) into proposed-updates->stable-new, proposed-updates (Dominik George) (signed by: Salvatore Bonaccorso)
[2018-04-13] Accepted xrdp 0.9.6-1~bpo9+1 (source amd64) into stretch-backports, stretch-backports (Dominik George)
[2018-04-06] xrdp 0.9.6-1 MIGRATED to testing (Debian testing watch)
[2018-03-31] Accepted xrdp 0.9.6-1 (source) into unstable (Dominik George)
[2018-02-23] Accepted xrdp 0.9.1-9+deb9u2 (source amd64) into proposed-updates->stable-new, proposed-updates (Dominik George)
[2018-02-22] xrdp 0.9.5-2 MIGRATED to testing (Debian testing watch)
[2018-02-16] Accepted xrdp 0.9.5-2 (source amd64) into unstable (Dominik George)
[2018-01-13] xrdp 0.9.5-1 MIGRATED to testing (Debian testing watch)
[2018-01-07] Accepted xrdp 0.9.5-1 (source amd64) into unstable (Dominik George)
[2017-12-25] xrdp 0.9.4-5 MIGRATED to testing (Debian testing watch)
[2017-12-22] Accepted xrdp 0.9.4-5 (source i386) into unstable, unstable (Thorsten Glaser)
[2017-12-22] Accepted xrdp 0.9.4-4 (source i386) into unstable (Thorsten Glaser)
[2017-12-21] Accepted xrdp 0.9.4-3 (source amd64) into unstable (Dominik George)
[2017-12-17] xrdp 0.9.4-2 MIGRATED to testing (Debian testing watch)
[2017-12-15] Accepted xrdp 0.9.4-2 (source amd64) into unstable (Dominik George)
[2017-12-12] Accepted xrdp 0.5.0-2+deb7u3 (source amd64) into oldoldstable (Lucas Kanashiro)
[2017-12-11] Accepted xrdp 0.5.0-2+deb7u2 (source amd64) into oldoldstable (Lucas Kanashiro)
[2017-11-18] Accepted xrdp 0.9.1-9+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Dominik George)
[2017-10-25] Accepted xrdp 0.9.4-1~bpo9+1 (source i386) into stretch-backports, stretch-backports (Dominik George) (signed by: Thorsten Glaser)
[2017-10-25] Accepted xrdp 0.9.1-9~bpo8+1 (source i386) into jessie-backports->backports-policy, jessie-backports (Thorsten Glaser)
[2017-10-15] xrdp 0.9.4-1 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 10 11
RC: 0
I&N: 9 10
M&W: 1
F&P: 0
patch: 1

links

homepage
lintian (0, 1)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.9.12-1
52 bugs (2 patches)