[Pkg-freeipa-devel] Bug#1085393: Bug#1085393: should dogtag-pki be removed from unstable?

Timo Aaltonen tjaalton at debian.org
Sun Nov 17 19:17:39 GMT 2024


tags wontfix
thanks

Helmut Grohne kirjoitti 18.10.2024 klo 22.38:
> Source: dogtag-pki
> Version: 11.2.1-2
> Severity: important
> User: helmutg at debian.org
> Usertags: sidremove
> 
> Hi,
> 
> in addition to automatic removal suggestions, I would like to suggest
> removing dogtag-pki from unstable.
> 
> It is not part of bookworm nor trixie. It is a non-key leaf package. It
> has been last uploaded more than a year ago. It has four distinct RC
> bugs, of which one has a patch since at least four months. It also fails
> to build from source since at least three months. It has a privilege
> escalation vulnerability. It depends on tomcatjss, which is also rc
> buggy and cannot be removed, because it has dogtag-pki as sole reverse
> dependency.
> 
> If you disagree with the removal suggestion, please add a wontfix tag to
> this bug. Otherwise, I'll reassign it into a proper removal bug in about
> a month.
> 
> Helmut
Hi,

It should be possible to vendor some bits from tomcat9-user/common so 
that it would be able to work still with current src:tomcat9 which only 
builds libtomcat9-java, but this is still WIP. I'll try to work on it soon.


-- 
t



More information about the Pkg-freeipa-devel mailing list