icingaweb2-module-reporting - Debian Package Tracker

general

source: icingaweb2-module-reporting (main)
version: 1.0.5-2
maintainer: David Kunz (DMD)
arch: all
std-ver: 4.7.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 0.10.0-1
stable: 1.0.4-1
testing: 1.0.4-1
unstable: 1.0.5-2

versioned links

0.10.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.0.4-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.0.5-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

icingaweb2-module-reporting

action needed

1 new commit since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 963b66a90d7153436ae274e7708cd94ebc733309
Author: David Kunz <david.kunz@bfh.ch>
Date:   Tue Sep 23 13:01:56 2025 +0200

    Releasing debian verson 1.0.5-2.
    
    Signed-off-by: David Kunz <david.kunz@bfh.ch>

Created: 2025-09-23 Last update: 2025-09-25 22:00

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2025-27406: (needs triaging) Icinga Reporting is the central component for reporting related functionality in the monitoring web frontend and framework Icinga Web 2. A vulnerability present in versions 0.10.0 through 1.0.2 allows to set up a template that allows to embed arbitrary Javascript. This enables the attacker to act on behalf of the user, if the template is being previewed; and act on behalf of the headless browser, if a report using the template is printed to PDF. This issue has been resolved in version 1.0.3 of Icinga Reporting. As a workaround, review all templates and remove suspicious settings.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-03-27 Last update: 2025-09-25 22:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.7.0).

Created: 2024-04-07 Last update: 2025-09-26 01:00

testing migrations

excuses:
- Migration status for icingaweb2-module-reporting (1.0.4-1 to 1.0.5-2): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ Too young, only 2 of 5 days old
- Additional info:
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/i/icingaweb2-module-reporting.html
- ∙ ∙ Reproducible on amd64 - info ♻
- ∙ ∙ Reproducible on arm64 - info ♻
- Not considered

news

[rss feed]

[2025-09-25] Accepted icingaweb2-module-reporting 1.0.5-2 (source) into unstable (David Kunz) (signed by: Daniel Baumann)
[2025-07-22] Accepted icingaweb2-module-reporting 1.0.5-1 (source) into experimental (David Kunz) (signed by: Daniel Baumann)
[2025-04-08] icingaweb2-module-reporting 1.0.4-1 MIGRATED to testing (Debian testing watch)
[2025-04-03] Accepted icingaweb2-module-reporting 1.0.4-1 (source) into unstable (David Kunz) (signed by: Sakirnth Nagarasa)
[2025-03-01] icingaweb2-module-reporting 1.0.2-2 MIGRATED to testing (Debian testing watch)
[2025-02-24] Accepted icingaweb2-module-reporting 1.0.2-2 (source) into unstable (David Kunz) (signed by: Sakirnth Nagarasa)
[2024-07-08] icingaweb2-module-reporting 1.0.2-1 MIGRATED to testing (Debian testing watch)
[2024-07-02] Accepted icingaweb2-module-reporting 1.0.2-1 (source) into unstable (David Kunz) (signed by: Sakirnth Nagarasa)
[2024-04-02] icingaweb2-module-reporting 1.0.1-1 MIGRATED to testing (Debian testing watch)
[2024-03-27] Accepted icingaweb2-module-reporting 1.0.1-1 (source) into unstable (David Kunz) (signed by: Sakirnth Nagarasa)
[2023-09-16] icingaweb2-module-reporting 0.10.0-2 MIGRATED to testing (Debian testing watch)
[2023-09-11] Accepted icingaweb2-module-reporting 0.10.0-2 (source) into unstable (David Kunz) (signed by: Daniel Baumann)
[2023-02-10] icingaweb2-module-reporting 0.10.0-1 MIGRATED to testing (Debian testing watch)
[2023-02-08] Accepted icingaweb2-module-reporting 0.10.0-1 (source) into unstable (David Kunz) (signed by: Daniel Baumann)
[2022-07-12] icingaweb2-module-reporting 0.9.2+20200529-2 MIGRATED to testing (Debian testing watch)
[2022-02-22] icingaweb2-module-reporting REMOVED from testing (Debian testing watch)
[2022-02-05] icingaweb2-module-reporting 0.9.2+20200529-2 MIGRATED to testing (Debian testing watch)
[2022-02-04] icingaweb2-module-reporting REMOVED from testing (Debian testing watch)
[2022-01-03] icingaweb2-module-reporting 0.9.2+20200529-2 MIGRATED to testing (Debian testing watch)
[2021-12-28] Accepted icingaweb2-module-reporting 0.9.2+20200529-2 (source) into unstable (David Kunz) (signed by: Daniel Baumann)
[2021-02-27] Accepted icingaweb2-module-reporting 0.9.2+20200529-1 (source all) into unstable, unstable (Debian FTP Masters) (signed by: Daniel Baumann)

bugs [bug history graph]

all: 0

links

homepage
lintian
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (100, -)

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.0.4-1