Register | Log in

cloud-init

initialization system for infrastructure cloud instances

Choose email to subscribe with

general

source: cloud-init (main)
version: 20.2-2
maintainer: Debian Cloud Team (archive) (DMD)
uploaders: Thomas Goirand [DMD] – Noah Meyerhans [DMD] – Bastian Blank [DMD]
arch: all
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.7.6~bzr976-2
o-o-sec: 0.7.6~bzr976-2+deb8u1
oldstable: 0.7.9-2
stable: 18.3-6
testing: 20.2-2
unstable: 20.2-2

versioned links

0.7.6~bzr976-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.7.6~bzr976-2+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.7.9-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
18.3-6: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
20.2-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

cloud-init (10 bugs: 0, 7, 3, 0)

action needed

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2020-02-26 Last update: 2020-06-03 06:00

2 ignored security issues in buster low

There are 2 open security issues in buster.

2 issues skipped by the security teams:

CVE-2020-8631: cloud-init through 19.4 relies on Mersenne Twister for a random password, which makes it easier for attackers to predict passwords, because rand_str in cloudinit/util.py calls the random.choice function.
CVE-2020-8632: In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords.

Please fix them.

Created: 2020-02-05 Last update: 2020-05-25 05:00

3 ignored security issues in stretch low

There are 3 open security issues in stretch.

3 issues skipped by the security teams:

CVE-2020-8631: cloud-init through 19.4 relies on Mersenne Twister for a random password, which makes it easier for attackers to predict passwords, because rand_str in cloudinit/util.py calls the random.choice function.
CVE-2020-8632: In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords.
CVE-2019-0816: A security feature bypass exists in Azure SSH Keypairs, due to a change in the provisioning logic for some Linux images that use cloud-init, aka 'Azure SSH Keypairs Security Feature Bypass Vulnerability'.

Please fix them.

Created: 2019-03-14 Last update: 2020-05-25 05:00

news

[2020-05-25] cloud-init 20.2-2 MIGRATED to testing (Debian testing watch)
[2020-05-20] Accepted cloud-init 20.2-2 (source) into unstable (Noah Meyerhans)
[2020-05-19] Accepted cloud-init 20.2-1 (source) into unstable (Noah Meyerhans)
[2020-03-30] cloud-init 20.1-2 MIGRATED to testing (Debian testing watch)
[2020-03-23] Accepted cloud-init 20.1-2 (source) into unstable (Noah Meyerhans)
[2020-03-19] cloud-init 20.1-1 MIGRATED to testing (Debian testing watch)
[2020-03-13] Accepted cloud-init 20.1-1 (source) into unstable (Noah Meyerhans)
[2020-02-24] cloud-init 19.4-2 MIGRATED to testing (Debian testing watch)
[2020-02-21] Accepted cloud-init 0.7.6~bzr976-2+deb8u1 (source all) into oldoldstable (Utkarsh Gupta)
[2020-02-18] Accepted cloud-init 19.4-2 (source) into unstable (Noah Meyerhans)
[2020-02-15] Accepted cloud-init 19.4-1 (source) into unstable (Noah Meyerhans)
[2020-02-03] cloud-init 19.3-2 MIGRATED to testing (Debian testing watch)
[2020-01-29] Accepted cloud-init 19.3-2 (source) into unstable (Thomas Goirand)
[2019-12-15] cloud-init 19.3-1 MIGRATED to testing (Debian testing watch)
[2019-12-10] Accepted cloud-init 19.3-1 (source) into unstable (Thomas Goirand)
[2019-10-28] cloud-init 19.2-4 MIGRATED to testing (Debian testing watch)
[2019-10-23] Accepted cloud-init 19.2-4 (source) into unstable (Thomas Goirand)
[2019-10-22] cloud-init 19.2-3 MIGRATED to testing (Debian testing watch)
[2019-10-16] Accepted cloud-init 19.2-3 (source) into unstable (Thomas Goirand)
[2019-10-16] Accepted cloud-init 19.2-2 (source) into unstable (Thomas Goirand)
[2019-09-03] cloud-init 19.2-1 MIGRATED to testing (Debian testing watch)
[2019-09-03] cloud-init 19.2-1 MIGRATED to testing (Debian testing watch)
[2019-08-29] Accepted cloud-init 19.2-1 (source) into unstable (Thomas Goirand)
[2019-04-27] cloud-init 18.3-6 MIGRATED to testing (Debian testing watch)
[2019-04-25] Accepted cloud-init 18.3-6 (source all) into unstable (Thomas Goirand)
[2019-02-19] cloud-init 18.3-5 MIGRATED to testing (Debian testing watch)
[2019-02-08] Accepted cloud-init 18.3-5 (source) into unstable (Bastian Blank)
[2019-02-08] Accepted cloud-init 18.3-4 (source) into unstable (Bastian Blank)
[2018-10-20] cloud-init 18.3-3 MIGRATED to testing (Debian testing watch)
[2018-10-15] Accepted cloud-init 18.3-3 (source all) into unstable (Thomas Goirand)

1
2

bugs [bug history graph]

all: 10
RC: 0
I&N: 7
M&W: 3
F&P: 0
patch: 1

links

homepage
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 20.2-45-g5f7825e2-0ubuntu1
102 bugs (6 patches)
patches for 20.2-45-g5f7825e2-0ubuntu1

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing