group.of.nepali.translators team mailing list archive

Thread
Date

[Bug 1669764] Re: security update spams log file

To: group.of.nepali.translators@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1669764@xxxxxxxxxxxxxxxxxx>
Date: Fri, 03 Mar 2017 15:01:04 -0000
Reply-to: Bug 1669764 <1669764@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package munin - 2.0.25-2ubuntu0.16.04.3

---------------
munin (2.0.25-2ubuntu0.16.04.3) xenial-security; urgency=medium

  * SECURITY REGRESSION: log spamming issue (LP: #1669764)
    - debian/patches/CVE-2017-6188-3.patch: use looks_like_number in
      master/_bin/munin-cgi-graph.in.

 -- Marc Deslauriers <marc.deslauriers@xxxxxxxxxx>  Fri, 03 Mar 2017
07:19:15 -0500

** Changed in: munin (Ubuntu Xenial)
       Status: New => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2017-6188

** Changed in: munin (Ubuntu Trusty)
       Status: New => Fix Released

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1669764

Title:
  security update spams log file

Status in munin package in Ubuntu:
  New
Status in munin source package in Trusty:
  Fix Released
Status in munin source package in Xenial:
  Fix Released
Status in munin source package in Yakkety:
  New
Status in munin package in Debian:
  Confirmed

Bug description:
  The munin security update caused a regression that is spamming the log
  file with:

  2017/03/02 06:53:56 [PERL WARNING] Use of uninitialized value $size_x
  in string eq at /usr/lib/munin/cgi/munin-cgi-graph line 453.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/munin/+bug/1669764/+subscriptions