Source: ohcount Severity: normal When I tried to triage the last security issue, I went through sourceforge but it looks like the project is abandoned there. You should replace that URL with https://github.com/blackducksoftware/ohcount which is where developement is happening nowadays.
There's a new 3.1.0 release there fixing the open CVE and other things apparently. You might want to package it too. Cheers, -- System Information: Debian Release: buster/sid APT prefers oldoldstable APT policy: (500, 'oldoldstable'), (500, 'unstable'), (500, 'testing'), (500, 'stable'), (500, 'oldstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), LANGUAGE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)