Bug#1008164: RM: obfs4proxy/0.0.8-1

To: 1008164@bugs.debian.org, Ana Custura <ana@netstat.org.uk>
Cc: team@security.debian.org
Subject: Bug#1008164: RM: obfs4proxy/0.0.8-1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Mon, 04 Jul 2022 19:36:12 +0100
Message-id: <[🔎] 6d511874ada456c2452012710f019f6baee6e873.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1008164@bugs.debian.org
In-reply-to: <f51286f4-06ce-9b6c-c529-83220b5ab0b4@debian.org>
References: <20220323121351.0C4867A06A0@netstat.org.uk> <20220323121351.0C4867A06A0@netstat.org.uk> <f51286f4-06ce-9b6c-c529-83220b5ab0b4@debian.org> <20220323121351.0C4867A06A0@netstat.org.uk>

Control: retitle -1 RM: obfs4proxy -- RoM; security issues
Control: tags -1 + moreinfo

On Sat, 2022-03-26 at 21:21 +0100, Paul Gevers wrote:
> Control: tag -1 bullseye
> 
> Hi Ana,
> 
> On 23-03-2022 13:13, Ana Custura wrote:
> > Opening this bug after a recomendation from debian-security.
> > Version 0.0.8 of obfs4proxy has a security bug, which has only been
> > fixed in a later
> > version (0.0.13, see bug number #1004374), and also suffers from
> > incompatibilty issues
> > with later versions of the package. Version 0.0.13 is already in
> > bullseye-backports.
> 
> So this want's removal from bullseye, setting the right tag to have
> it on the radar of the SRM.

obfs4proxy has a reverse-dependency in bullseye:

Checking reverse dependencies...
# Broken Depends:
onionshare: onionshare

Dependency problem found.

Regards,

Adam

Reply to:

Prev by Date: Processed: Re: Bug#1008164: RM: obfs4proxy/0.0.8-1
Next by Date: Bug#1004831: transition: ffmpeg
Previous by thread: Processed: retitle 1010196 to RM: elog -- RoQA; unmaintained; security issues, tagging 1010196
Next by thread: Processed: Re: Bug#1008164: RM: obfs4proxy/0.0.8-1
Index(es):
- Date
- Thread