Debian Package Tracker

general

source: icinga2 (main)
version: 2.11.2-1
maintainer: Debian Nagios Maintainer Group (archive) (DMD)
uploaders: Alexander Wirt [DMD] – Markus Frosch [DMD] – Jan Wagner [DMD]
arch: all any
std-ver: 4.4.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.1.1-1
oldstable: 2.6.0-2+deb9u1
old-bpo: 2.10.3-2~bpo9+1
stable: 2.10.3-2
testing: 2.11.2-1
unstable: 2.11.2-1

versioned links

2.1.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.6.0-2+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.10.3-2~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.10.3-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.11.2-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

icinga2 (3 bugs: 0, 1, 2, 0)
icinga2-bin (1 bugs: 0, 1, 0, 0)
icinga2-common (1 bugs: 0, 1, 0, 0)
icinga2-doc
icinga2-ido-mysql (2 bugs: 0, 2, 0, 0)
icinga2-ido-pgsql
vim-icinga2

action needed

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2020-02-18 Last update: 2020-02-25 11:01

Multiarch hinter reports 3 issue(s) normal

There are issues with the multiarch metadata for this package.

icinga2-doc could be marked Multi-Arch: foreign
vim-icinga2 could be marked Multi-Arch: foreign
icinga2 could be marked Multi-Arch: same

Created: 2016-09-14 Last update: 2020-02-25 05:05

Does not build reproducibly during testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2018-09-11 Last update: 2020-02-25 05:04

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 2.11.2-2, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 0c631f6bbf0921503eccad52896d92ce46514818
Author: Bas Couwenberg <sebastic@xs4all.nl>
Date:   Mon Jan 27 16:56:09 2020 +0100

    Mark boost-1.71.patch as Applied-Upstream.

commit 7ce451c1af04139b293c997c1412f0cab5ceb944
Author: Bas Couwenberg <sebastic@xs4all.nl>
Date:   Sat Jan 25 19:06:30 2020 +0100

    Add patch by Giovanni Mascellani to fix FTBFS with Boost 1.71. (closes: #949836)

commit 1f5ee207ff617c4e7ba64a6b35f0ea363fa00329
Author: Bas Couwenberg <sebastic@xs4all.nl>
Date:   Sat Jan 25 11:21:56 2020 +0100

    Bump Standards-Version to 4.5.0, no changes.

commit 6c206bffe6266d0dae6e188d51ab73d133220b89
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Sun Oct 27 03:15:03 2019 +0000

    Rely on pre-initialized dpkg-architecture variables.
    
    Fixes lintian: debian-rules-sets-dpkg-architecture-variable
    See https://lintian.debian.org/tags/debian-rules-sets-dpkg-architecture-variable.html for more details.

commit 961a7951f08cb990c45f5365e0510f325989a639
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Sun Oct 27 03:14:45 2019 +0000

    Remove obsolete fields Name from debian/upstream/metadata.

commit 70e7b0e0e846970e6f2c2f25b0fd1530728f302f
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Sun Oct 27 03:14:28 2019 +0000

    Drop unnecessary dh arguments: --parallel
    
    Fixes lintian: debian-rules-uses-unnecessary-dh-argument
    See https://lintian.debian.org/tags/debian-rules-uses-unnecessary-dh-argument.html for more details.

commit 15792d17efe6c1150a1e76b4f9cae30a0bdef198
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Sun Oct 27 03:14:09 2019 +0000

    Bump debhelper from old 9 to 12.
    + Use dh_installsystemd rather than deprecated dh_systemd_enable.
    
    Fixes lintian: package-uses-old-debhelper-compat-version
    See https://lintian.debian.org/tags/package-uses-old-debhelper-compat-version.html for more details.

Created: 2019-12-12 Last update: 2020-02-24 18:39

6 ignored security issues in jessie low

There are 6 open security issues in jessie.

6 issues skipped by the security teams:

CVE-2018-6532: An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted (authenticated and unauthenticated) requests, an attacker can exhaust a lot of memory on the server side, triggering the OOM killer.
CVE-2018-6533: An issue was discovered in Icinga 2.x through 2.8.1. By editing the init.conf file, Icinga 2 can be run as root. Following this the program can be used to run arbitrary code as root. This was fixed by no longer using init.conf to determine account information for any root-executed code (a larger issue than CVE-2017-16933).
CVE-2018-6536: An issue was discovered in Icinga 2.x through 2.8.1. The daemon creates an icinga2.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for icinga2.pid modification before a root script executes a "kill `cat /pathname/icinga2.pid`" command, as demonstrated by icinga2.init.d.cmake.
CVE-2018-6534: An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.
CVE-2018-6535: An issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison function can disclose the password to an attacker.
CVE-2017-16933: etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a chown call for a filename in a user-writable directory, which allows local users to gain privileges by leveraging access to the $ICINGA2_USER account for creation of a link.

Please fix them.

Created: 2017-11-24 Last update: 2019-11-01 06:07

6 ignored security issues in stretch low

There are 6 open security issues in stretch.

6 issues skipped by the security teams:

CVE-2018-6532: An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted (authenticated and unauthenticated) requests, an attacker can exhaust a lot of memory on the server side, triggering the OOM killer.
CVE-2018-6533: An issue was discovered in Icinga 2.x through 2.8.1. By editing the init.conf file, Icinga 2 can be run as root. Following this the program can be used to run arbitrary code as root. This was fixed by no longer using init.conf to determine account information for any root-executed code (a larger issue than CVE-2017-16933).
CVE-2018-6536: An issue was discovered in Icinga 2.x through 2.8.1. The daemon creates an icinga2.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for icinga2.pid modification before a root script executes a "kill `cat /pathname/icinga2.pid`" command, as demonstrated by icinga2.init.d.cmake.
CVE-2018-6534: An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.
CVE-2018-6535: An issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison function can disclose the password to an attacker.
CVE-2017-16933: etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a chown call for a filename in a user-writable directory, which allows local users to gain privileges by leveraging access to the $ICINGA2_USER account for creation of a link.

Please fix them.

Created: 2017-11-24 Last update: 2019-11-01 06:07

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.4.1).

Created: 2020-01-21 Last update: 2020-01-21 05:06

news

[rss feed]

[2019-11-24] Removed 2.11.1-2~exp1 from experimental (Debian FTP Masters)
[2019-11-24] Removed 2.11.0~rc1-1~exp2 from experimental (Debian FTP Masters)
[2019-11-01] icinga2 2.11.2-1 MIGRATED to testing (Debian testing watch)
[2019-10-26] Accepted icinga2 2.11.2-1 (source) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-10-25] Accepted icinga2 2.11.1-2 (source) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-10-25] icinga2 2.11.1-1 MIGRATED to testing (Debian testing watch)
[2019-10-18] Accepted icinga2 2.11.1-2~exp1 (source) into experimental (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-10-18] Accepted icinga2 2.11.1-1 (source) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-09-20] Accepted icinga2 2.11.0-1~exp1 (source) into experimental (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-09-16] icinga2 2.10.6-1 MIGRATED to testing (Debian testing watch)
[2019-09-04] Accepted icinga2 2.10.6-1 (source) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-08-07] Accepted icinga2 2.11.0~rc1-1~exp2 (source) into experimental (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-07-27] Accepted icinga2 2.11.0~rc1-1~exp1 (source) into experimental (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-07-26] icinga2 2.10.5-1 MIGRATED to testing (Debian testing watch)
[2019-07-07] Accepted icinga2 2.10.5-1 (source) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-05-24] Accepted icinga2 2.10.5-1~exp1 (source amd64 all) into experimental (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-03-23] Accepted icinga2 2.10.3-2~bpo9+1 (source) into stretch-backports->backports-policy, stretch-backports (Chris Boot)
[2019-03-22] Accepted icinga2 2.10.4-1~exp1 (source amd64 all) into experimental (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-03-11] icinga2 2.10.3-2 MIGRATED to testing (Debian testing watch)
[2019-03-01] Accepted icinga2 2.10.3-2 (source amd64 all) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-03-01] Accepted icinga2 2.10.3-1 (source amd64 all) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2019-01-06] Accepted icinga2 2.10.2-1~bpo9+1 (source) into stretch-backports (Chris Boot)
[2018-12-18] Accepted icinga2 2.6.0-2+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Felix Geyer)
[2018-11-23] icinga2 2.10.2-1 MIGRATED to testing (Debian testing watch)
[2018-11-19] Accepted icinga2 2.10.2-1 (source amd64 all) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2018-11-04] Accepted icinga2 2.10.1-3~bpo9+1 (source) into stretch-backports (Chris Boot)
[2018-11-04] icinga2 2.10.1-3 MIGRATED to testing (Debian testing watch)
[2018-11-04] icinga2 2.10.1-3 MIGRATED to testing (Debian testing watch)
[2018-11-01] Accepted icinga2 2.10.1-3 (source amd64 all) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2018-10-26] Accepted icinga2 2.10.1-2~bpo9+1 (source) into stretch-backports (Chris Boot)

bugs [bug history graph]

all: 8
RC: 0
I&N: 5
M&W: 2
F&P: 1
patch: 1

links

homepage
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.11.2-1
3 bugs