Ubuntu
xymon package

xymon 4.3.29-1 source package in Ubuntu

Changelog

xymon (4.3.29-1) unstable; urgency=high

  * Import new upstream release.
    + Fixes multiple security vulnerabilities:
      - CVE-2019-13451: service overflows histlogfn in history.c.
      - CVE-2019-13452: service overflows histlogfn in reportlog.c.
      - CVE-2019-13273: srdb overflows dbfn in csvinfo.c.
      - CVE-2019-13274: reflected XSS in csvinfo.c.
      - CVE-2019-13455: htmlquoted(hostname) overflows msgline in
        acknowledge.c.
      - CVE-2019-13484: htmlquoted(xymondreq) overflows errtxt appfeed.c.
      - CVE-2019-13485: hostname overflows selfurl in history.c.
      - CVE-2019-13486: htmlquoted(xymondreq) overflows errtxt in
        svcstatus.c.
    + Drop patches applied upstream:
      - 00_htmlcontenttype.patch
      - 39_kfreebsd-makefile.patch
      - 66_apache2.4.patch
      - 84_fix_compilation_on_GNU_Hurd.patch
      - 90_fix-spelling-errors.patch
    + Refresh update patches where necessary:
      - 24_hobbitclient-tmpfs.patch
      - 51_hardening-buildflags.patch
      - 87_fix_logfetch_FTBFS_with_glibc_2.26.patch
    + Add new build-dependency libtirpc-dev.
  * Declare compliance with Debian Policy 4.4.0. (No changes needed.)
  * Bump debhelper compatibility level to 12.
    + Replace debian/compat with a versioned b-d on debhelper-compat.

 -- Axel Beckert <email address hidden>  Wed, 24 Jul 2019 01:18:17 +0200

Upload details

Uploaded by:
Christoph Berg
Uploaded to:
Sid
Original maintainer:
Christoph Berg
Architectures:
any
Section:
net
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
xymon_4.3.29-1.dsc 2.0 KiB cbd9aaaaed2943d0c192f58bc3bbb925df4ccbe509286b430f2d3456c905d351
xymon_4.3.29.orig.tar.gz 3.4 MiB 89bcb6c7a4325c8bcaa5c1f3de238c444f2731b04b0cb0348b88add89396c659
xymon_4.3.29-1.debian.tar.xz 41.3 KiB 4da37521e08b3ebd443d1661e1298bb3bb9cfbf6990b47fee11f09d98f6b078a

Available diffs

No changes file available.

Binary packages built by this source

xymon: No summary available for xymon in ubuntu eoan.

No description available for xymon in ubuntu eoan.

xymon-client: No summary available for xymon-client in ubuntu eoan.

No description available for xymon-client in ubuntu eoan.

xymon-client-dbgsym: No summary available for xymon-client-dbgsym in ubuntu eoan.

No description available for xymon-client-dbgsym in ubuntu eoan.

xymon-dbgsym: No summary available for xymon-dbgsym in ubuntu eoan.

No description available for xymon-dbgsym in ubuntu eoan.