-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: cacti
Version: 0.8.8b+dfsg-8+deb8u7
CVE ID : CVE-2019-11025
Debian Bug : #926700
It was discovered that there were a number of cross-site scripting
vulnerabilities (XSS) in cacti, a web-based front-end for the
Am 16.04.19 um 09:17 schrieb Raphael Hertzog:
> Hi,
>
> On Mon, 08 Apr 2019, Markus Koschany wrote:
>> "Not used by any sponsor" is often used internally in commit messages as
>> an additional comment, reason and clarification why a certain issue is
>
> In commit message to which repository?
>
On Mon, 2019-04-15 at 20:00 +0200, Ola Lundqvist wrote:
> Hi Scott
>
> I have now walked through the difference in the debian directories between
> the version in jessie and stretch updates.
> I think there is more work than just a simple changelog update.
>
> 1) The changelog file contain a lot
Hi,
On 16/04/2019 09:20, Raphael Hertzog wrote:
> On Tue, 09 Apr 2019, Sylvain Beucler wrote:
>> On 09/04/2019 09:50, Ingo Wichmann wrote:
>>> labeling it "minor issues" when the real reason is "sponsors needed"
>>> sounds wrong to me.
>> That's never been the real reason so far AFAICS, only a
On 16/04/2019 04:22, PICCORO McKAY Lenz wrote:
> but seems wheeze are removed from security debian but still april 14 and
> not present at archive debain
It is indeed removed from security.debian.org, however it has been archived:
http://archive.debian.org/debian/dists/wheezy/
On Tue, 16 Apr 2019, Paul Wise wrote:
> On Tue, Apr 16, 2019 at 10:20 AM PICCORO McKAY Lenz wrote:
>
> > was removed or not? are stil ELTS?
>
> The timeline says that eLTS support ended on 31st May 2019.
> https://wiki.debian.org/LTS/Extended
That date has not passed yet and the page said
Hi,
On Tue, 09 Apr 2019, Sylvain Beucler wrote:
> On 09/04/2019 09:50, Ingo Wichmann wrote:
> > labeling it "minor issues" when the real reason is "sponsors needed"
> > sounds wrong to me.
>
> That's never been the real reason so far AFAICS, only a complementary
> reason.
Ok, still to not
Hi,
On Mon, 08 Apr 2019, Markus Koschany wrote:
> "Not used by any sponsor" is often used internally in commit messages as
> an additional comment, reason and clarification why a certain issue is
In commit message to which repository?
I think you are mixing the ELTS security tracker here.
>
