[Pkg-freeipa-devel] Bug#1085393: Bug#1085393: should dogtag-pki be removed from unstable?
Timo Aaltonen
tjaalton at debian.org
Sun Nov 17 19:17:39 GMT 2024
tags wontfix
thanks
Helmut Grohne kirjoitti 18.10.2024 klo 22.38:
> Source: dogtag-pki
> Version: 11.2.1-2
> Severity: important
> User: helmutg at debian.org
> Usertags: sidremove
>
> Hi,
>
> in addition to automatic removal suggestions, I would like to suggest
> removing dogtag-pki from unstable.
>
> It is not part of bookworm nor trixie. It is a non-key leaf package. It
> has been last uploaded more than a year ago. It has four distinct RC
> bugs, of which one has a patch since at least four months. It also fails
> to build from source since at least three months. It has a privilege
> escalation vulnerability. It depends on tomcatjss, which is also rc
> buggy and cannot be removed, because it has dogtag-pki as sole reverse
> dependency.
>
> If you disagree with the removal suggestion, please add a wontfix tag to
> this bug. Otherwise, I'll reassign it into a proper removal bug in about
> a month.
>
> Helmut
Hi,
It should be possible to vendor some bits from tomcat9-user/common so
that it would be able to work still with current src:tomcat9 which only
builds libtomcat9-java, but this is still WIP. I'll try to work on it soon.
--
t
More information about the Pkg-freeipa-devel
mailing list