Your message dated Tue, 04 Jul 2023 11:51:09 +0000
with message-id <e1qgeyn-004l9m...@fasolo.debian.org>
and subject line Bug#1000012: fixed in nmap 7.94+dfsg1-2
has caused the Debian Bug report #1000012,
regarding nmap: depends on obsolete pcre3 library
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
1000012: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1000012
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: nmap
Severity: important
User: matthew-pcre...@debian.org
Usertags: obsolete-pcre3
Dear maintainer,
Your package still depends on the old, obsolete PCRE3[0] libraries
(i.e. libpcre3-dev). This has been end of life for a while now, and
upstream do not intend to fix any further bugs in it. Accordingly, I
would like to remove the pcre3 libraries from Debian, preferably in
time for the release of Bookworm.
The newer PCRE2 library was first released in 2015, and has been in
Debian since stretch. Upstream's documentation for PCRE2 is available
here: https://pcre.org/current/doc/html/
Many large projects that use PCRE have made the switch now (e.g. git,
php); it does involve some work, but we are now at the stage where
PCRE3 should not be used, particularly if it might ever be exposed to
untrusted input.
This mass bug filing was discussed on debian-devel@ in
https://lists.debian.org/debian-devel/2021/11/msg00176.html
Regards,
Matthew [0] Historical reasons mean that old PCRE is packaged as
pcre3 in Debian
--- End Message ---
--- Begin Message ---
Source: nmap
Source-Version: 7.94+dfsg1-2
Done: Hilko Bengen <ben...@debian.org>
We believe that the bug you reported is fixed in the latest version of
nmap, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1000...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Hilko Bengen <ben...@debian.org> (supplier of updated nmap package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 04 Jul 2023 13:25:28 +0200
Source: nmap
Architecture: source
Version: 7.94+dfsg1-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Security Tools <team+pkg-secur...@tracker.debian.org>
Changed-By: Hilko Bengen <ben...@debian.org>
Closes: 1000012
Changes:
nmap (7.94+dfsg1-2) unstable; urgency=medium
.
* Switch to PCRE2, using patches from upstream git (Closes: #1000012)
Checksums-Sha1:
50071013064b5ea82128e32f91b5db097958ab56 2275 nmap_7.94+dfsg1-2.dsc
7b601b2e3156630a46f3a8f8b76c306f7ccff6aa 34076 nmap_7.94+dfsg1-2.debian.tar.xz
2487d5e8f2472c9c27b74fe6b52edc8ec23c316a 7709
nmap_7.94+dfsg1-2_source.buildinfo
Checksums-Sha256:
1196cfe92060d3b770a41260e90b30774efb381f6c4afe59bba91db7cf3fe8fb 2275
nmap_7.94+dfsg1-2.dsc
e32f5831eb76632cbdf6ade59fcfeed9d0ccec5f5c5c78151c93c094cc0ced98 34076
nmap_7.94+dfsg1-2.debian.tar.xz
89dc77f1ee1566bf5f0c85cb5fb198633c229b89292aecc47c6d1b29f021f91b 7709
nmap_7.94+dfsg1-2_source.buildinfo
Files:
0827505834443a3ce61fb311324196e0 2275 net optional nmap_7.94+dfsg1-2.dsc
706d18bd8bf19d6cd40d0dd28d1725cd 34076 net optional
nmap_7.94+dfsg1-2.debian.tar.xz
1bc3886bd74c3c916f675e35af6ca832 7709 net optional
nmap_7.94+dfsg1-2_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCAAdFiEErnMQVUQqHZbPTUx4dbcQY1whOn4FAmSkAqwACgkQdbcQY1wh
On6W4RAArpi9fj5UkjpgIGF1PWMODPEEPBGBN/6uum4oyNuneR/QuTgxUs0vNoRO
RWbyFLTqYv0x7+yC2hWbnXYKCC2130nt2u461ilSBeH8niU2mCEgWDM1GH0vJgKV
outv1XphI1SpAq2IWIWnrL2Levo3Q73jM7W1c9GM3eCUdM5fiPE0hmpiFXDrfVAO
OJc/uqe947gl3eMdx/Ib6w1+Gp8MmnBzipWb/cCGwpHeFTusma0gg64EDqB/7g8j
9ynaOfhaql1ciX5cHzget5868UzRteESjju/ztu0mn/X5Kj6U4Lsb7c+o5OqXM0P
Gb8c/KLkR0qLhiJLgLzcpukf9DpwA8AacBPsRu8WAbYicEwmO4jqCxD0k9BjbQwp
b/Dlq9Gn1ZFFJGnSiQZCJzYOu/y3CDGWjt8DtxOcApVb44JWerhjG/ydQ7YQwt7Y
EWx11CgjKFKQjBPIUUiEoqyZirQ85jAqoNYbV1J9FZaqLXZtepke/bjpHeV7I9oR
pChSnAQekks0fsCpx0xIBWBl6OkMOILMrgNwkNkiWv0U8QZg/aQE9vXc17aY0nrK
9yQLQ5E0RMGHATFx66bcUEFCsKlAVQ5IryShH43lj7YjDr7mijJ4cQaw8CORcktL
m5X7emkQ5Jj8nmXHbAjGo0Jhv4PcyZMzjkOPHd0U4yg8MEnhcMs=
=njVz
-----END PGP SIGNATURE-----
--- End Message ---
