Bug#931275: RM: jasperreports -- RoQA; many security issues
Salvatore Bonaccorso
carnil at debian.org
Sun Jun 30 09:54:20 BST 2019
Package: ftp.debian.org
Severity: normal
Hi FTP masters,
As discussed around https://bugs.debian.org/880467#10 jasperreports is
not really supportable in Debian. It has several (undetermined)
security issues where upstream does not share detailed information and
just advises to update to newest upstream version.
Work has been done (see above bug) to actually make it possible to
remove jasperreports without breaking reverse dependencies or reverse
build dependencies.
Please remove jasperreports from unstable (it will already not be part
of buster).
Regards,
Salvatore
More information about the pkg-java-maintainers
mailing list