This file tracks packages, which have turned out to be maintained
in a problematic manner, e.g. security-sensitive packages without
an active maintainer. Such packages need to be reviewed prior to
a release (at least some months before the freeze phase), so that
they find a new maintainer or get removed from the archive:

----

mathtex: (Nov 2009)
No reaction to remote code execution bugs in unstable since July.
Only one upload, maintainer has no other packages.
SF: pinged maintainer on 2009-11-29

----

bugzilla: (Nov 2009)
Maintainer active again, package is still quite old, though 3.2

----

jasper (June 2009)
A security fix was dropped in a later upload, no followup on
the respective bug for three weeks as of 2009-06-02.

----

libapache-mod-jk (May 2009)
Group maintained by Java Team, but no reply to RC security bug
#523054 for six weeks as of 2009-05-18.

----

xpdf: (Nov 2009)
No maintainer upload for two years, frequent security issues.
Removed from Squeeze, remaining packages using xpdf-* have been
NMUed to use poppler

----

swftools: (Nov 2009)
Similar situation as with xpdf (it embeds a copy of xpdf).
Removed from squeeze, no maintainer response in more than three months.