Distribution Packages

And why you should avoid them

Apart from the obvious danger of running versions without any security updates, there are other problems with downstream packages:

• often unusable builds, ie: fedora : invalid mode 'start'
• invalid and unnecessary package dependencies (ie: Fedora)
• enabling untested options or dangerous codecs (all distros)
• missing features (ie: HTML5 with Debian packages)
• gratuitous patching, causing breakage ie: Debian arm builds were unusable for years etc

See also: list of currently supported versions of xpra.

You can download the official packages here.

---

Specific Distributions

A great explanation of the Debian / Ubuntu packaging mess can be found here: ​Matthew Garrett: There's more than one way to exploit the commons and also here: Debian Distribution-Specific Issues.

The problems with the Ubuntu packages are so severe that they have their own wiki page

Debian's hand waving about backports is rightfully ignored here.

---

Proof

3.0 release

This table was generated on the 2020-01-17 when 3.0.5 was the latest LTS version available.

Distribution	Variant	Version Shipped	Known Issues
Fedora	30 and 31	​3.0.3	OK: 3.0.5 in testing, their packaging unmercifully conflicts with the packages from xpra.org, also contains invalid and unnecessary dependencies
Ubuntu	​Xenial aka 16.04	​0.15.8	over 4 years without any fixes, many known bugs and security vulnerabilities - do not use, very dangerous, missing components, etc
Ubuntu	​Bionic aka 18.04	​2.1.3	2.5 years without any fixes, numerous serious issues, dangerous
Ubuntu	​Eoan aka 19.10	​2.4.3	buggy, 14 months without any fixes
Debian	​Buster	​2.4.3	buggy, 14 months without any fixes
Debian	​Stretch	​0.17.6	3.5 years out of date, many known bugs and security vulnerabilities - do not use, very dangerous, missing components, etc
Gentoo	​Stable	​2.2.2	Dire: 2 years out of date!
Gentoo	​Testing	​3.0.2	Missing some important fixes, dubious patches applied
​Arch	n/a	​3.0.5	Great: fully up to date