Debian Package Tracker

general

source: phamm (main)
version: 0.6.8-1
maintainer: Phamm Team (DMD)
uploaders: Alessandro De Zorzi [DMD] – Mirko Grava [DMD]
arch: all
std-ver: 3.9.5
VCS: unknown

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 0.6.2-1.2
stable: 0.6.5-1
unstable: 0.6.8-1

versioned links

0.6.2-1.2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.6.5-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.6.8-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

phamm
phamm-ldap
phamm-ldap-amavis
phamm-ldap-vacation

action needed

Standards version of the package is outdated. high

The package is severely out of date with respect to the Debian Policy. The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.1 instead of 3.9.5).

Created: 2014-12-03 Last update: 2019-09-29 23:40

lintian reports 1 error and 13 warnings high

Lintian reports 1 error and 13 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2019-08-24 Last update: 2019-08-24 02:17

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2018-20806: Phamm (aka PHP LDAP Virtual Hosting Manager) 0.6.8 allows XSS via the login page (the /public/main.php action parameter).

Please fix it.

Created: 2017-07-20 Last update: 2019-07-04 06:38

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2019-04-02 Last update: 2019-10-17 20:34

Depends on packages which need a new maintainer normal

The packages that phamm depends on which need a new maintainer are:

apache2 (#910917)
- Build-Depends: apache2-dev
- Recommends: apache2

Created: 2018-10-13 Last update: 2019-10-17 20:12

2 ignored security issues in jessie low

There are 2 open security issues in jessie.

2 issues skipped by the security teams:

CVE-2017-0378: XSS exists in the login_form function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATH_INFO to main.php.
CVE-2018-20806: Phamm (aka PHP LDAP Virtual Hosting Manager) 0.6.8 allows XSS via the login page (the /public/main.php action parameter).

Please fix them.

Created: 2017-07-20 Last update: 2019-07-04 06:38

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2017-0378: XSS exists in the login_form function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATH_INFO to main.php.
CVE-2018-20806: Phamm (aka PHP LDAP Virtual Hosting Manager) 0.6.8 allows XSS via the login page (the /public/main.php action parameter).

Please fix them.

Created: 2017-07-20 Last update: 2019-07-04 06:38

testing migrations

excuses:
- Migration status for phamm (- to 0.6.8-1): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- Updating phamm introduces new bugs: #924731
- Not built on buildd: arch all binaries uploaded by kobold, a new source-only upload is needed to allow migration
- Additional info:
- Piuparts tested OK - https://piuparts.debian.org/sid/source/p/phamm.html
- 204 days old (needed 5 days)
- Not considered

news

[rss feed]

[2019-03-28] Accepted phamm 0.6.8-1 (source all) into unstable (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2019-02-25] phamm REMOVED from testing (Debian testing watch)
[2016-08-12] phamm 0.6.5-1 MIGRATED to testing (Debian testing watch)
[2016-08-06] Accepted phamm 0.6.5-1 (source all) into unstable (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2016-06-07] phamm 0.6.2-2 MIGRATED to testing (Debian testing watch)
[2016-06-01] Accepted phamm 0.6.2-2 (source all) into unstable (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2016-05-21] phamm REMOVED from testing (Debian testing watch)
[2014-12-10] phamm 0.6.2-1.2 MIGRATED to testing (Britney)
[2014-12-04] Accepted phamm 0.6.2-1.2 (source all) into unstable (Jean-Michel Nirgal Vourgère) (signed by: Joao Eriberto Mota Filho)
[2014-12-03] Accepted phamm 0.6.2-1.1 (source all) into unstable (Jean-Michel Nirgal Vourgère) (signed by: Joao Eriberto Mota Filho)
[2014-08-02] phamm 0.6.2-1 MIGRATED to testing (Britney)
[2014-07-27] Accepted phamm 0.6.2-1 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2013-10-15] phamm REMOVED from testing (Debian testing watch)
[2012-05-23] phamm 0.5.18-3.1 MIGRATED to testing (Debian testing watch)
[2012-05-12] Accepted phamm 0.5.18-3.1 (source all) (Christian Perrier)
[2011-02-06] phamm 0.5.18-3 MIGRATED to testing (Debian testing watch)
[2010-12-09] phamm 0.5.18-2+squeeze1 MIGRATED to testing (Debian testing watch)
[2010-12-08] Accepted phamm 0.5.18-2+squeeze1 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2010-11-16] Accepted phamm 0.5.18-3 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2010-04-14] phamm 0.5.18-2 MIGRATED to testing (Debian testing watch)
[2010-04-03] Accepted phamm 0.5.18-2 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2010-04-03] Accepted phamm 0.5.18-1 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2010-04-03] Accepted phamm 0.5.17-1 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2009-03-28] phamm 0.5.15-1 MIGRATED to testing (Debian testing watch)
[2009-03-18] Accepted phamm 0.5.15-1 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2009-02-16] phamm 0.5.12-4 MIGRATED to testing (Debian testing watch)
[2008-11-08] Accepted phamm 0.5.12-4 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2008-08-29] phamm REMOVED from testing (Debian testing watch)
[2008-08-17] Accepted phamm 0.5.12-3 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)
[2008-08-03] Accepted phamm 0.5.12-1 (source all) (Alessandro De Zorzi) (signed by: Fabio Tranchitella)

bugs [bug history graph]

all: 1
RC: 1
I&N: 0
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (1, 13)
buildd: logs, clang
popcon
browse source code
edit tags
security tracker
screenshots