Debian Package Tracker
Register | Log in
Subscribe

smarty3

Smarty - the compiling PHP template engine

Choose email to subscribe with

general
  • source: smarty3 (main)
  • version: 3.1.38-1
  • maintainer: Mike Gabriel (DMD) (LowNMU)
  • uploaders: Debian Edu Packaging Team (archive) [DMD]
  • arch: all
  • std-ver: 4.5.1
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • o-o-stable: 3.1.21-1+deb8u2
  • o-o-sec: 3.1.21-1+deb8u2
  • oldstable: 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u1
  • old-sec: 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u1
  • stable: 3.1.33+20180830.1.3a78a21f+selfpack1-1
  • testing: 3.1.36-2
  • unstable: 3.1.38-1
versioned links
  • 3.1.21-1+deb8u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.1.33+20180830.1.3a78a21f+selfpack1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.1.36-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.1.38-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • smarty3
action needed
2 ignored security issues in stretch low
There are 2 open security issues in stretch.
2 issues skipped by the security teams:
  • CVE-2018-13982: Smarty_Security::isTrustedResourceDir() in Smarty before 3.1.33 is prone to a path traversal vulnerability due to insufficient template code sanitization. This allows attackers controlling the executed template code to bypass the trusted directory security restriction and read arbitrary files.
  • CVE-2018-16831: Smarty before 3.1.33-dev-4 allows attackers to bypass the trusted_dir protection mechanism via a file:./../ substring in an include statement.
Please fix them.
Created: 2018-09-12 Last update: 2021-01-19 01:35
testing migrations
  • excuses:
    • Migration status for smarty3 (3.1.36-2 to 3.1.38-1): Waiting for test results, another package or too young (no action required now - check later)
    • Issues preventing migration:
    • Too young, only 0 of 5 days old
    • Additional info:
    • Piuparts tested OK - https://piuparts.debian.org/sid/source/s/smarty3.html
    • Not considered
news
[rss feed]
  • [2021-01-18] Accepted smarty3 3.1.38-1 (source) into unstable (Mike Gabriel)
  • [2021-01-12] smarty3 3.1.36-2 MIGRATED to testing (Debian testing watch)
  • [2021-01-06] Accepted smarty3 3.1.36-2 (source) into unstable (Mike Gabriel)
  • [2020-12-12] smarty3 3.1.36-1 MIGRATED to testing (Debian testing watch)
  • [2020-12-07] Accepted smarty3 3.1.36-1 (source) into unstable (Mike Gabriel)
  • [2019-11-23] smarty3 3.1.34+20190228.1.c9f0de05+selfpack1-1 MIGRATED to testing (Debian testing watch)
  • [2019-11-18] Accepted smarty3 3.1.34+20190228.1.c9f0de05+selfpack1-1 (source) into unstable (Mike Gabriel)
  • [2018-09-22] smarty3 3.1.33+20180830.1.3a78a21f+selfpack1-1 MIGRATED to testing (Debian testing watch)
  • [2018-09-17] Accepted smarty3 3.1.33+20180830.1.3a78a21f+selfpack1-1 (source) into unstable (Mike Gabriel)
  • [2018-06-02] smarty3 3.1.32+20180424.1.ac9d4b58+selfpack1-1 MIGRATED to testing (Debian testing watch)
  • [2018-05-27] Accepted smarty3 3.1.32+20180424.1.ac9d4b58+selfpack1-1 (source) into unstable (Mike Gabriel)
  • [2018-02-10] Accepted smarty3 3.1.21-1+deb8u2 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Mike Gabriel)
  • [2018-02-10] Accepted smarty3 3.1.21-1+deb8u1 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Mike Gabriel)
  • [2018-02-09] Accepted smarty3 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u1 (source all) into proposed-updates->stable-new, proposed-updates (Mike Gabriel)
  • [2018-01-30] Accepted smarty3 3.1.10-2+deb7u3 (source all) into oldoldstable (Mike Gabriel)
  • [2018-01-20] Accepted smarty3 3.1.10-2+deb7u2 (source all) into oldoldstable (Chris Lamb)
  • [2018-01-19] smarty3 3.1.31+20161214.1.c7d42e4+selfpack1-3 MIGRATED to testing (Debian testing watch)
  • [2018-01-14] Accepted smarty3 3.1.31+20161214.1.c7d42e4+selfpack1-3 (source) into unstable (Mike Gabriel)
  • [2017-03-24] smarty3 3.1.31+20161214.1.c7d42e4+selfpack1-2 MIGRATED to testing (Debian testing watch)
  • [2017-03-21] Accepted smarty3 3.1.31+20161214.1.c7d42e4+selfpack1-2 (source) into unstable (Mike Gabriel)
  • [2017-02-04] smarty3 3.1.31+20161214.1.c7d42e4+selfpack1-1 MIGRATED to testing (Debian testing watch)
  • [2017-01-24] Accepted smarty3 3.1.31+20161214.1.c7d42e4+selfpack1-1 (source) into unstable (Mike Gabriel)
  • [2016-12-01] smarty3 3.1.30-1 MIGRATED to testing (Debian testing watch)
  • [2016-11-25] Accepted smarty3 3.1.30-1 (source all) into unstable (Mike Gabriel)
  • [2016-10-20] Accepted smarty3 3.1.30-1~exp1 (source all) into experimental (Mike Gabriel)
  • [2016-10-13] smarty3 3.1.29-2 MIGRATED to testing (Debian testing watch)
  • [2016-10-07] Accepted smarty3 3.1.29-2 (source all) into unstable (Mike Gabriel)
  • [2016-05-30] Accepted smarty3 3.1.29-1 (source all) into experimental (Mike Gabriel)
  • [2016-05-29] smarty3 3.1.21-1.1 MIGRATED to testing (Debian testing watch)
  • [2016-05-23] Accepted smarty3 3.1.21-1.1 (source) into unstable (Holger Levsen)
  • 1
  • 2
bugs [bug history graph]
  • all: 0
links
  • homepage
  • lintian
  • buildd: logs, clang, reproducibility
  • popcon
  • browse source code
  • edit tags
  • other distros
  • security tracker
  • screenshots
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 3.1.38-1
  • 1 bug

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing