| 2022-06-09 17:27:57 |
Lena Voytek |
bug |
|
|
added bug |
| 2022-06-09 17:28:29 |
Lena Voytek |
bug |
|
|
added subscriber Ubuntu Server |
| 2022-06-09 17:29:20 |
Lena Voytek |
description |
An MIR was originally attempted a few years ago (see LP: #1576812) but was denied as the package was not yet in a good enough state. In that time ipmitool has become a more reasonable candidate for main inclusion.
[Availability]
The package ipmitool is already in Ubuntu universe.
The package ipmitool builds for the architectures it is designed to work on.
It currently builds and works for architectures: any
Link to package [[https://launchpad.net/ubuntu/+source/ipmitool|ipmitool]]
[Rationale]
- The package ipmitool will generally be useful for a large part of our
user base since it is widely used in systems management and in various
HA components. It is also suggested by tools such as cluster-glue which
is in main
[Security]
- Based on CVE trackers ipmitool had 2 relevant security issues
- CVE-2020-5208 (https://ubuntu.com/security/CVE-2020-5208): handled in
1.8.19 upstream and in a set of 6 patches in 1.8.18-10.1 Debian/Ubuntu
- CVE-2011-4339 (https://ubuntu.com/security/CVE-2011-4339): Fixed
in 1.8.11-5
- The binary ipmievd is installed to /usr/sbin. It has a fairly limited
scope with limited exposure, acting as a daemon for sending IPMI events
to syslog. ipmievd requires super user priveleges to access syslog.
- The package installs a service corresponding to ipmievd located at:
/etc/init.d/ipmievd and /lib/systemd/system/ipmievd.service
- The package does not open privileged ports (ports < 1024), but defaults to
using port 514 in certain situations.
- The package does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install. Site-specific options for
accessing a BMC may be necessary, but are documented in the man page.
[Quality assurance - maintenance]
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/ipmitool/+bug
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=ipmitool
- The package is maintained well in Debian/Ubuntu and does not have too
many bugs with nothing long term and critical open
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it has no test
suite. If it had tests they would likely have strict hardware
dependencies.
- The package does not have any autopkgtests
[Quality assurance - packaging]
- debian/watch is present and works
- This package does not yield massive lintian Warnings, Errors
Lintain results:
W: ipmitool-dbgsym: elf-error In program headers: Unable to find program interpreter name [usr/lib/debug/.build-id/83/f454e3ecf71ef36fda026461a8785a747ec163.debug]
W: ipmitool-dbgsym: elf-error In program headers: Unable to find program interpreter name [usr/lib/debug/.build-id/d9/d138606f42a79ef56f95617d3f57b765b3afe4.debug]
- Lintian overrides are no longer present in the package
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will not be installed by default
- Packaging and build is easy
[UI standards]
- Outside of the comand-line tool, the application is not end-user facing.
It has no translations present though.
- ipmitool has no desktop file, and is primarily used via the
command-line on servers
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Ubuntu Server
- Team is already subscribed to the package
- This does not use static builds
- This does not use vendored code
[Background information]
The Package description explains the package well
Upstream Name is ipmitool
Link to upstream project https://github.com/ipmitool/ipmitool |
An MIR was originally attempted a few years ago (see LP: #1576812) but was denied as the package was not yet in a good enough state. In that time ipmitool has become a more reasonable candidate for main inclusion.
[Availability]
The package ipmitool is already in Ubuntu universe.
The package ipmitool builds for the architectures it is designed to work on.
It currently builds and works for architectures: any
Link to package https://launchpad.net/ubuntu/+source/ipmitool
[Rationale]
- The package ipmitool will generally be useful for a large part of our
user base since it is widely used in systems management and in various
HA components. It is also suggested by tools such as cluster-glue which
is in main
[Security]
- Based on CVE trackers ipmitool had 2 relevant security issues
- CVE-2020-5208 (https://ubuntu.com/security/CVE-2020-5208): handled in
1.8.19 upstream and in a set of 6 patches in 1.8.18-10.1 Debian/Ubuntu
- CVE-2011-4339 (https://ubuntu.com/security/CVE-2011-4339): Fixed
in 1.8.11-5
- The binary ipmievd is installed to /usr/sbin. It has a fairly limited
scope with limited exposure, acting as a daemon for sending IPMI events
to syslog. ipmievd requires super user priveleges to access syslog.
- The package installs a service corresponding to ipmievd located at:
/etc/init.d/ipmievd and /lib/systemd/system/ipmievd.service
- The package does not open privileged ports (ports < 1024), but defaults to
using port 514 in certain situations.
- The package does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install. Site-specific options for
accessing a BMC may be necessary, but are documented in the man page.
[Quality assurance - maintenance]
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/ipmitool/+bug
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=ipmitool
- The package is maintained well in Debian/Ubuntu and does not have too
many bugs with nothing long term and critical open
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it has no test
suite. If it had tests they would likely have strict hardware
dependencies.
- The package does not have any autopkgtests
[Quality assurance - packaging]
- debian/watch is present and works
- This package does not yield massive lintian Warnings, Errors
Lintain results:
W: ipmitool-dbgsym: elf-error In program headers: Unable to find program interpreter name [usr/lib/debug/.build-id/83/f454e3ecf71ef36fda026461a8785a747ec163.debug]
W: ipmitool-dbgsym: elf-error In program headers: Unable to find program interpreter name [usr/lib/debug/.build-id/d9/d138606f42a79ef56f95617d3f57b765b3afe4.debug]
- Lintian overrides are no longer present in the package
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will not be installed by default
- Packaging and build is easy
[UI standards]
- Outside of the comand-line tool, the application is not end-user facing.
It has no translations present though.
- ipmitool has no desktop file, and is primarily used via the
command-line on servers
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Ubuntu Server
- Team is already subscribed to the package
- This does not use static builds
- This does not use vendored code
[Background information]
The Package description explains the package well
Upstream Name is ipmitool
Link to upstream project https://github.com/ipmitool/ipmitool |
|
| 2022-06-09 17:30:28 |
Lena Voytek |
bug |
|
|
added subscriber MIR approval team |
| 2022-06-09 17:34:48 |
Lena Voytek |
description |
An MIR was originally attempted a few years ago (see LP: #1576812) but was denied as the package was not yet in a good enough state. In that time ipmitool has become a more reasonable candidate for main inclusion.
[Availability]
The package ipmitool is already in Ubuntu universe.
The package ipmitool builds for the architectures it is designed to work on.
It currently builds and works for architectures: any
Link to package https://launchpad.net/ubuntu/+source/ipmitool
[Rationale]
- The package ipmitool will generally be useful for a large part of our
user base since it is widely used in systems management and in various
HA components. It is also suggested by tools such as cluster-glue which
is in main
[Security]
- Based on CVE trackers ipmitool had 2 relevant security issues
- CVE-2020-5208 (https://ubuntu.com/security/CVE-2020-5208): handled in
1.8.19 upstream and in a set of 6 patches in 1.8.18-10.1 Debian/Ubuntu
- CVE-2011-4339 (https://ubuntu.com/security/CVE-2011-4339): Fixed
in 1.8.11-5
- The binary ipmievd is installed to /usr/sbin. It has a fairly limited
scope with limited exposure, acting as a daemon for sending IPMI events
to syslog. ipmievd requires super user priveleges to access syslog.
- The package installs a service corresponding to ipmievd located at:
/etc/init.d/ipmievd and /lib/systemd/system/ipmievd.service
- The package does not open privileged ports (ports < 1024), but defaults to
using port 514 in certain situations.
- The package does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install. Site-specific options for
accessing a BMC may be necessary, but are documented in the man page.
[Quality assurance - maintenance]
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/ipmitool/+bug
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=ipmitool
- The package is maintained well in Debian/Ubuntu and does not have too
many bugs with nothing long term and critical open
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it has no test
suite. If it had tests they would likely have strict hardware
dependencies.
- The package does not have any autopkgtests
[Quality assurance - packaging]
- debian/watch is present and works
- This package does not yield massive lintian Warnings, Errors
Lintain results:
W: ipmitool-dbgsym: elf-error In program headers: Unable to find program interpreter name [usr/lib/debug/.build-id/83/f454e3ecf71ef36fda026461a8785a747ec163.debug]
W: ipmitool-dbgsym: elf-error In program headers: Unable to find program interpreter name [usr/lib/debug/.build-id/d9/d138606f42a79ef56f95617d3f57b765b3afe4.debug]
- Lintian overrides are no longer present in the package
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will not be installed by default
- Packaging and build is easy
[UI standards]
- Outside of the comand-line tool, the application is not end-user facing.
It has no translations present though.
- ipmitool has no desktop file, and is primarily used via the
command-line on servers
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Ubuntu Server
- Team is already subscribed to the package
- This does not use static builds
- This does not use vendored code
[Background information]
The Package description explains the package well
Upstream Name is ipmitool
Link to upstream project https://github.com/ipmitool/ipmitool |
An MIR was originally attempted a few years ago (see LP: #1576812) but was denied as the package was not yet in a good enough state. In that time ipmitool has become a more reasonable candidate for main inclusion.
ipmitool is used often by MAAS and has shown up in component mismatches for a few years. It is also used often for high availability systems.
[Availability]
The package ipmitool is already in Ubuntu universe.
The package ipmitool builds for the architectures it is designed to work on.
It currently builds and works for architectures: any
Link to package https://launchpad.net/ubuntu/+source/ipmitool
[Rationale]
- The package ipmitool will generally be useful for a large part of our
user base since it is widely used in systems management and in various
HA components. It is also suggested by tools such as cluster-glue which
is in main
[Security]
- Based on CVE trackers ipmitool had 2 relevant security issues
- CVE-2020-5208 (https://ubuntu.com/security/CVE-2020-5208): handled in
1.8.19 upstream and in a set of 6 patches in 1.8.18-10.1 Debian/Ubuntu
- CVE-2011-4339 (https://ubuntu.com/security/CVE-2011-4339): Fixed
in 1.8.11-5
- The binary ipmievd is installed to /usr/sbin. It has a fairly limited
scope with limited exposure, acting as a daemon for sending IPMI events
to syslog. ipmievd requires super user priveleges to access syslog.
- The package installs a service corresponding to ipmievd located at:
/etc/init.d/ipmievd and /lib/systemd/system/ipmievd.service
- The package does not open privileged ports (ports < 1024), but defaults to
using port 514 in certain situations.
- The package does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install. Site-specific options for
accessing a BMC may be necessary, but are documented in the man page.
[Quality assurance - maintenance]
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/ipmitool/+bug
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=ipmitool
- The package is maintained well in Debian/Ubuntu and does not have too
many bugs with nothing long term and critical open
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it has no test
suite. If it had tests they would likely have strict hardware
dependencies.
- The package does not have any autopkgtests
[Quality assurance - packaging]
- debian/watch is present and works
- This package does not yield massive lintian Warnings, Errors
Lintain results:
W: ipmitool-dbgsym: elf-error In program headers: Unable to find program interpreter name [usr/lib/debug/.build-id/83/f454e3ecf71ef36fda026461a8785a747ec163.debug]
W: ipmitool-dbgsym: elf-error In program headers: Unable to find program interpreter name [usr/lib/debug/.build-id/d9/d138606f42a79ef56f95617d3f57b765b3afe4.debug]
- Lintian overrides are no longer present in the package
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will not be installed by default
- Packaging and build is easy
[UI standards]
- Outside of the comand-line tool, the application is not end-user facing.
It has no translations present though.
- ipmitool has no desktop file, and is primarily used via the
command-line on servers
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Ubuntu Server
- Team is already subscribed to the package
- This does not use static builds
- This does not use vendored code
[Background information]
The Package description explains the package well
Upstream Name is ipmitool
Link to upstream project https://github.com/ipmitool/ipmitool |
|
| 2022-06-14 05:55:08 |
Christian Ehrhardt |
ipmitool (Ubuntu): milestone |
|
ubuntu-22.08 |
|
| 2022-06-14 14:41:11 |
Christian Ehrhardt |
ipmitool (Ubuntu): assignee |
|
Ioanna Alifieraki (joalif) |
|
| 2022-06-27 15:19:11 |
Ioanna Alifieraki |
bug |
|
|
added subscriber Ioanna Alifieraki |
| 2022-06-27 15:31:44 |
Ioanna Alifieraki |
ipmitool (Ubuntu): status |
New |
Incomplete |
|
| 2022-06-28 14:39:51 |
Christian Ehrhardt |
ipmitool (Ubuntu): assignee |
Ioanna Alifieraki (joalif) |
Ubuntu Security Team (ubuntu-security) |
|
| 2022-06-29 17:30:02 |
Seth Arnold |
tags |
|
sec-1107 |
|
| 2022-07-12 12:46:01 |
Christian Ehrhardt |
ipmitool (Ubuntu): status |
Incomplete |
New |
|
| 2022-08-02 15:43:24 |
Mark Esler |
bug watch added |
|
https://github.com/ipmitool/ipmitool/issues/347 |
|
| 2022-08-02 15:43:24 |
Mark Esler |
bug watch added |
|
https://github.com/ipmitool/ipmitool/issues/229 |
|
| 2022-08-02 15:43:24 |
Mark Esler |
bug watch added |
|
https://github.com/ipmitool/ipmitool/issues/326 |
|
| 2022-08-02 15:43:24 |
Mark Esler |
cve linked |
|
2020-5208 |
|
| 2022-08-02 15:47:41 |
Mark Esler |
ipmitool (Ubuntu): assignee |
Ubuntu Security Team (ubuntu-security) |
|
|
| 2022-08-02 16:15:15 |
Mark Esler |
ipmitool (Ubuntu): status |
New |
Won't Fix |
|
| 2022-08-02 16:16:26 |
Mark Esler |
bug |
|
|
added subscriber Mark Esler |
| 2023-03-21 15:37:55 |
Seth Arnold |
bug |
|
|
added subscriber Ubuntu Package Archive Administrators |
| 2023-03-21 15:38:17 |
Seth Arnold |
bug |
|
|
added subscriber MAAS |
| 2023-12-12 15:53:30 |
Launchpad Janitor |
merge proposal linked |
|
https://code.launchpad.net/~paelzer/ubuntu-seeds/+git/platform/+merge/457339 |
|
