group.of.nepali.translators team mailing list archive

Thread
Date

[Bug 1663891] [NEW] Security uploads for cacti (trusty and xenial)

To: group.of.nepali.translators@xxxxxxxxxxxxxxxxxxx
From: Paul Gevers <1663891@xxxxxxxxxxxxxxxxxx>
Date: Sat, 11 Feb 2017 15:04:15 -0000
Reply-to: Bug 1663891 <1663891@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

Since the last uploads in security upload in Trusty and the last upload
in Xenial, multiple CVE's have been reported against cacti.

Please upload the attached debdiff's to fix all open issues in Trusty
and Xenial. Because the state in Debian's LTS Wheezy is similar to
Trusty, I applied all the changes since the last common change-set. For
Xenial, I based the changes on Jessie's stable uploads.

To be perfectly clear, I did verify that all the patches apply cleanly
(and build cleanly on debomatic, although that doesn't say much for a
php package), but I haven't verified functionality as I could bring
myself to do that for Ubuntu (I already did that too often for the
Debian packages). But because this all is php and the patches are
already exposed in Debian for an extremely long time, I don't see much
risk (please judge yourself though).

** Affects: cacti (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: cacti (Ubuntu Trusty)
     Importance: Undecided
         Status: New

** Affects: cacti (Ubuntu Xenial)
     Importance: Undecided
         Status: New


** Tags: security trusty xenial

** Patch added: "Debdiff for trusty"
   https://bugs.launchpad.net/bugs/1663891/+attachment/4817011/+files/cacti_trusty-security.debdiff

** Also affects: cacti (Ubuntu Xenial)
   Importance: Undecided
       Status: New

** Also affects: cacti (Ubuntu Trusty)
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1663891

Title:
  Security uploads for cacti (trusty and xenial)

Status in cacti package in Ubuntu:
  New
Status in cacti source package in Trusty:
  New
Status in cacti source package in Xenial:
  New

Bug description:
  Since the last uploads in security upload in Trusty and the last
  upload in Xenial, multiple CVE's have been reported against cacti.

  Please upload the attached debdiff's to fix all open issues in Trusty
  and Xenial. Because the state in Debian's LTS Wheezy is similar to
  Trusty, I applied all the changes since the last common change-set.
  For Xenial, I based the changes on Jessie's stable uploads.

  To be perfectly clear, I did verify that all the patches apply cleanly
  (and build cleanly on debomatic, although that doesn't say much for a
  php package), but I haven't verified functionality as I could bring
  myself to do that for Ubuntu (I already did that too often for the
  Debian packages). But because this all is php and the patches are
  already exposed in Debian for an extremely long time, I don't see much
  risk (please judge yourself though).

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cacti/+bug/1663891/+subscriptions

Follow ups

[Bug 1663891] Re: Security uploads for cacti (trusty and xenial)
From: Seth Arnold, 2017-02-15
[Bug 1663891] Re: Security uploads for cacti (trusty and xenial)
From: Mathew Hodson, 2017-02-14