yaml-cpp - Debian Package Tracker

general

source: yaml-cpp (main)
version: 0.6.3-10
maintainer: Simon Quigley (DMD)
uploaders: Gianfranco Costamagna [DMD]
arch: any
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.5.2-4
oldstable: 0.6.2-4
stable: 0.6.3-9
testing: 0.6.3-10
unstable: 0.6.3-10

versioned links

0.5.2-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.6.2-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.6.3-9: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.6.3-10: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libyaml-cpp-dev
libyaml-cpp0.6

action needed

A new upstream version is available: 0.7.0 high

A new upstream version 0.7.0 is available, you should consider packaging it.

Created: 2021-07-14 Last update: 2021-09-20 23:28

Multiarch hinter reports 1 issue(s) normal

There are issues with the multiarch metadata for this package.

libyaml-cpp-dev could be marked Multi-Arch: same

Created: 2020-05-09 Last update: 2021-09-21 02:02

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 0.7.0-1, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit eeafe2fe01694223cd23be9e4835e8695dac91d4
Author: Simon Quigley <simon@tsimonq2.net>
Date:   Wed Sep 15 23:19:27 2021 -0500

    libyaml-cpp0.6 -> libyaml-cpp0.7.

commit 11f741e902e9df4580be3c6296759044a27ee271
Author: Simon Quigley <simon@tsimonq2.net>
Date:   Sun Sep 5 10:13:09 2021 -0500

    Remove reverse-applicable patches and refresh existing ones.

commit 7debb5d7416656ae57533c01a7dfe593eec179dd
Author: Simon Quigley <simon@tsimonq2.net>
Date:   Sun Sep 5 09:26:15 2021 -0500

    New upstream release.

Created: 2021-09-16 Last update: 2021-09-16 05:35

lintian reports 2 warnings normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2021-05-27 Last update: 2021-05-27 22:07

6 low-priority security issues in buster low

There are 6 open security issues in buster.

6 issues left for the package maintainer to handle:

CVE-2017-11692: (needs triaging) The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service (assertion failure and application exit) via a '!2' string.
CVE-2017-5950: (needs triaging) The SingleDocParser::HandleNode function in yaml-cpp (aka LibYaml-C++) 0.5.3 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted YAML file.
CVE-2018-20573: (needs triaging) The Scanner::EnsureTokensInQueue function in yaml-cpp (aka LibYaml-C++) 0.6.2 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted YAML file.
CVE-2018-20574: (needs triaging) The SingleDocParser::HandleFlowMap function in yaml-cpp (aka LibYaml-C++) 0.6.2 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted YAML file.
CVE-2019-6285: (needs triaging) The SingleDocParser::HandleFlowSequence function in yaml-cpp (aka LibYaml-C++) 0.6.2 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted YAML file.
CVE-2019-6292: (needs triaging) An issue was discovered in singledocparser.cpp in yaml-cpp (aka LibYaml-C++) 0.6.2. Stack Exhaustion occurs in YAML::SingleDocParser, and there is a stack consumption problem caused by recursive stack frames: HandleCompactMap, HandleMap, HandleFlowSequence, HandleSequence, HandleNode. Remote attackers could leverage this vulnerability to cause a denial-of-service via a cpp file.

You can find information about how to handle these issues in the security team's documentation.

Created: 2021-02-19 Last update: 2021-08-16 05:30

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2014-07-02 Last update: 2020-05-19 20:02

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.0 instead of 4.5.0).

Created: 2020-11-17 Last update: 2021-08-18 14:02

news

[rss feed]

[2021-08-16] yaml-cpp 0.6.3-10 MIGRATED to testing (Debian testing watch)
[2021-04-21] Accepted yaml-cpp 0.6.3-10 (source) into unstable (Matthias Klose) (signed by: Gianfranco Costamagna)
[2020-06-03] yaml-cpp 0.6.3-9 MIGRATED to testing (Debian testing watch)
[2020-05-29] Accepted yaml-cpp 0.6.3-9 (source) into unstable (Gianfranco Costamagna)
[2020-05-24] yaml-cpp 0.6.3-8 MIGRATED to testing (Debian testing watch)
[2020-05-19] Accepted yaml-cpp 0.6.3-8 (source) into unstable (Gianfranco Costamagna)
[2020-05-19] yaml-cpp 0.6.3-7 MIGRATED to testing (Debian testing watch)
[2020-05-13] Accepted yaml-cpp 0.6.3-7 (source) into unstable (Gianfranco Costamagna)
[2020-05-10] Accepted yaml-cpp 0.6.3-6 (source) into unstable (Simon Quigley)
[2020-05-09] Accepted yaml-cpp 0.6.3-5 (source) into unstable (Gianfranco Costamagna)
[2020-05-08] Accepted yaml-cpp 0.6.3-4 (source) into unstable (Gianfranco Costamagna)
[2020-05-08] Accepted yaml-cpp 0.6.3-2 (source) into unstable (Gianfranco Costamagna)
[2020-05-08] Accepted yaml-cpp 0.6.3-1.2 (source) into unstable (Gianfranco Costamagna)
[2020-05-08] Accepted yaml-cpp 0.6.3-1.1 (source) into unstable (Gianfranco Costamagna)
[2020-04-30] Accepted yaml-cpp 0.6.3-1 (source) into unstable (Simon Quigley)
[2019-01-13] yaml-cpp 0.6.2-4 MIGRATED to testing (Debian testing watch)
[2019-01-07] Accepted yaml-cpp 0.6.2-4 (source) into unstable (Simon Quigley)
[2019-01-05] Accepted yaml-cpp 0.6.2-3 (source) into experimental (Simon Quigley)
[2018-12-24] Accepted yaml-cpp 0.6.2-2 (source) into experimental (Simon Quigley)
[2018-12-12] yaml-cpp 0.5.3-0.2 MIGRATED to testing (Debian testing watch)
[2018-12-03] Accepted yaml-cpp 0.6.2-1 (source amd64) into experimental, experimental (Simon Quigley)
[2018-11-23] Accepted yaml-cpp 0.5.3-0.2 (source amd64) into unstable, unstable (Julian Andres Klode)
[2018-11-19] Accepted yaml-cpp 0.5.3-0.1 (source) into unstable (Boyuan Yang)
[2018-11-19] Accepted yaml-cpp 0.5.2-4.1 (source) into unstable (Boyuan Yang)
[2016-10-18] yaml-cpp 0.5.2-4 MIGRATED to testing (Debian testing watch)
[2016-10-13] Accepted yaml-cpp 0.5.2-4 (source amd64) into unstable (Paul Novotny)
[2016-07-08] yaml-cpp 0.5.2-3.1 MIGRATED to testing (Debian testing watch)
[2016-07-02] Accepted yaml-cpp 0.5.2-3.1 (source) into unstable (Christian Hofstaedtler)
[2015-12-06] yaml-cpp 0.5.2-3 MIGRATED to testing (Debian testing watch)
[2015-12-01] Accepted yaml-cpp 0.5.2-3 (source amd64) into unstable (Paul Novotny)

bugs [bug history graph]

all: 0

links

homepage
lintian (0, 2)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.6.3-10