Ubuntu
trac package

Upgrade to Trac 0.9.6 for dapper (security fixes)

Bug #42564 reported by Laurent CHARTRAIN on 2006-05-02

This bug report is a duplicate of: Bug #394290: Trac needs security fixes. Edit Remove

260

Affects		Status	Importance	Assigned to	Milestone
	trac (Ubuntu)	Fix Released	Medium	Unassigned
Declined for Edgy by William Grant
	Dapper	Confirmed	Undecided	Unassigned

Bug Description

The 0.9.4 - 0.9.6 releases resolve several security fixes and lot of bugs. Current version in Dapper is 0.9.3 which has bugs and security vulnerabilities.
Trac changelog: http://projects.edgewall.com/trac/wiki/ChangeLog
Thanks

See original description

Revision history for this message

Dennis Kaarsemaker (dennis) wrote on 2006-05-02:

#1

Rejecting as duplicate

Changed in trac:
status:	Unconfirmed → Rejected

Revision history for this message

William Grant (wgrant) wrote on 2007-03-10:

#2

There are security issues fixed in both 0.9.5 and 0.9.6 which should probably be backported to Dapper. I'm reopening this.

Changed in trac:
status:	Rejected → Fix Released

Revision history for this message

reiner (rjung) wrote on 2007-04-09:

#3

A little confusing that a package like trac which is used from so many open source projects and it is maintained from the Ubuntu Core developer team is not updated where several security problems are fixed. Are there any plans to make a update or any other recommandation.

Rouben (rouben) on 2007-04-09

description:

updated

Revision history for this message

Rouben (rouben) wrote on 2007-04-13:

#4

Subscribing motu-sru to this bug in order to request a SRU for trac 0.9.6 under dapper. Reason: security fixes. Current release in Dapper repos: 0.9.3, which is vulnerable.

Revision history for this message

StefanPotyra (sistpoty) wrote on 2007-04-13:

#5

Hi, thanks for the bug report.

subscribing motu-swat and unsubscribing motu-sru: security fixes should go to -security, not to -updates. As a side note: motu-sru is no longer active due to our new StableReleaseUpdates policy. It was only used back then to check the sanity of a proposed update, and thus didn't fix any bugs.

Cheers,
Stefan.

Revision history for this message

Rouben (rouben) wrote on 2007-04-13:

#6

Thanks Stefan, for referring this to the SWAT team! Much appreciated!

Rouben (rouben) on 2007-04-24

Changed in trac:
status:	Unconfirmed → Confirmed

Revision history for this message

Rouben (rouben) wrote on 2007-06-20:

#7

Don't mean to nag, but is there any prospect of this upgrade ever being released to Dapper?

Report a bug

This report contains Public Security information

Everyone can see this security related information.

Duplicate of bug #394290 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.