Accepted otrs2 3.2.11-1~bpo70+1 (source all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 31 Oct 2013 10:30:38 +0100
Source: otrs2
Binary: otrs2 otrs
Architecture: source all
Version: 3.2.11-1~bpo70+1
Distribution: wheezy-backports
Urgency: high
Maintainer: Patrick Matthäi <pmatthaei@debian.org>
Changed-By: Patrick Matthäi <pmatthaei@debian.org>
Description:
otrs - Open Ticket Request System (OTRS 3)
otrs2 - Open Ticket Request System
Closes: 690306 700897 702251 711282 715434 721771
Changes:
otrs2 (3.2.11-1~bpo70+1) wheezy-backports; urgency=low
.
* Rebuild for wheezy-backports.
.
otrs2 (3.2.11-1) unstable; urgency=low
.
* New upstream release.
- Refresh hunky patch 03-backup.
- Refresh hunky patch 13-load-debian-libjs.
.
otrs2 (3.2.10-2) unstable; urgency=low
.
* Pass $@ to the setup_apache function, because apache2-maintscript-helper
does not work anymore if called from a function without it.
Closes: #721771
* Temporary only watch the 3.2 branch.
.
otrs2 (3.2.10-1) unstable; urgency=low
.
* New upstream release.
- Refresh hunky patch 10-nice-packagemanager-permissions-message.
* Use bzip2 compressed tarballs.
* Use apache2-maintscript-helper to enable the required Apache modules.
* Also enable the Apache modules headers and deflate for performance
improvements.
* Rewrite patch 08-usable-apache-config to make it more compatible with
Apache 2.2 and 2.4. This also fixes the lintian warnings
apache2-deprecated-auth-config. Also overwrite the lintian warnings.
.
otrs2 (3.2.9-2) unstable; urgency=high
.
* Merge 3.1.7+dfsg1-8+deb7u3 and 2.4.9+dfsg1-3+squeeze4 changelog.
* Depend on libapache2-reload-perl.
* Depend on apache2 | httpd-cgi.
Closes: #715434
* Better sanity checking in postinst on enabling Apache modules. This is a
follow-up fix for #715434.
* Upgrade libapache-dbi-perl from recommends to depends.
* Remove old code from otrs2.postinst.
* Transition to Apache 2.4 packaging.
* Remove unused lintian override.
* Source /lib/lsb/init-functions in init script.
.
otrs2 (3.2.9-1) unstable; urgency=high
.
* New upstream release.
- Upstream security fixes for CVE-2013-4717 and CVE-2013-4718, also known
as OSA-2013-05.
.
otrs2 (3.2.8-1) unstable; urgency=high
.
* New upstream release.
- Security fix for CVE-2013-4088, also known as OSA-2013-04:
An attacker with a valid agent login could manipulate URLs in the ticket
watch mechanism to see contents of tickets they are not permitted to see.
- Rewrite patch 03-backup.
- Refresh patch 09-disable-DashboardProductNotify.
- Refresh patch 12-use-debian-libjs-packages.
- Refresh patch 14-font-paths.
* Merge 3.1.7+dfsg1-8+deb7u2 changelog.
.
otrs2 (3.2.7-2) unstable; urgency=medium
.
* Move RELEASE file to /usr/share/otrs.
Closes: #711282
.
otrs2 (3.2.7-1) unstable; urgency=high
.
* New upstream release.
- Security fix for CVE-2013-3551, also known as OSA-2013-03:
An attacker with a valid agent login could manipulate URLs in the ticket
split mechanism to see contents of tickets and they are not permitted to
see.
- Refresh hunky patch 07-dont-chown-links.
- Refresh hunky patch 10-nice-packagemanager-permissions-message.
- Rewrite patch 11-fix-SetPermissions-to-include-some-more-dirs.
* Merge 3.1.7+dfsg1-8+deb7u1 changelog.
* Permission fixes from debian/rules removed, again.
* Install new upstream changelog CHANGES.md.
.
otrs2 (3.2.6-2) unstable; urgency=low
.
* Uploading to unstable.
.
otrs2 (3.2.6-1) experimental; urgency=low
.
* New upstream release.
- Rewrite patch 04-backup.
- Refresh patch 16-disable-DashboardProductNotify.
- Refresh patch 19-fix-SetPermissions-to-include-some-more-dirs.
- Refresh patch 21-use-debian-libjs-packages.
- Refresh patch 26-font-paths.
* Rewrite patch order.
* Fix some wrong file permissions.
.
otrs2 (3.2.5-1) experimental; urgency=low
.
* New upstream release.
.
otrs2 (3.2.4-1) experimental; urgency=high
.
* New upstream release.
- Improved permission checks in LinkObject, this fixes CVE-2013-2625.
- Refresh patch 03-postmaster.
- Refresh patch 04-backup.
- Refresh patch 05-opt.
- Refresh patch 09-no-installer.
- Refresh patch 13-dont-chown-links.
- Refresh patch 18-nice-packagemanager-permissions-message.
- Refresh patch 19-fix-SetPermissions-to-include-some-more-dirs.
- Refresh patch 23-load-debian-libjs.
- The folders js-cache, css-cache, article, sessions and tmp in
/var/lib/otrs/ are not included anymore in the tarball, so move it from
otrs2.install to otrs2.dirs.
* Add dependency libio-interactive-perl.
* DBUpdate script 3.2.1 has to run as user otrs.
* Adjust patch 07-database to not use the strict mode.
* Remove otrs.SetPermissions.pl call on directory /var/lib/otrs from
README.Debian.
* No longer packaging a dfsg tarball, the generated PDF document from the
original source is just not used.
* Add missing post database schemas.
Closes: #702251
* Merge 3.1.7+dfsg1-8 changelog.
.
otrs2 (3.2.3+dfsg1-1) experimental; urgency=low
.
* New upstream release.
- Refresh patch 02-cron.
- Refresh patch 03-postmaster.
- Refresh patch 04-backup.
- Rewrite patch 05-opt.
- Refresh patch 07-database.
- Refresh patch 13-dont-chown-links.
- Refresh patch 15-usable-apache-config.
- Refresh patch 16-disable-DashboardProductNotify.
- Refresh patch 18-nice-packagemanager-permissions-message.
- Refresh patch 19-fix-SetPermissions-to-include-some-more-dirs.
- Refresh patch 21-use-debian-libjs-packages.
- Refresh patch 23-load-debian-libjs.
- Remove merged patch 25-use-locale-country.
- Refresh patch 26-font-paths.
- CREDITS file is removed.
.
otrs2 (3.2.2+dfsg1-1) experimental; urgency=high
.
* New upstream release.
- Drop merged patch 01-innodb-fk-error.
- Refresh patch 05-opt.
- Rewrite patch 07-database.
- Refresh patch 09-no-installer.
- Refresh patch 16-disable-DashboardProductNotify.
- Refresh patch 21-use-debian-libjs-packages.
- Refresh patch 26-font-paths.
* Merge changes from 3.1.7+dfsg1-7.
Closes: #700897
* Set +x on all Perl scripts in the bin directory.
.
otrs2 (3.2.1+dfsg1-1) experimental; urgency=low
.
* New upstream release.
- Add new dependency libyaml-libyaml-perl.
- Refresh patch 03-postmaster.
- Refresh patch 05-opt.
- Refresh patch 13-dont-chown-links.
- Refresh patch 16-disable-DashboardProductNotify.
- Refresh patch 19-fix-SetPermissions-to-include-some-more-dirs.
- Rewrite patch 25-use-locale-country, since all_country_names() does not
accept arguments.
- Refresh patch 26-font-paths.
- Rewrite patch 04-backup.
- Rewrite patch 15-usable-apache-config.
- Rewrite patch 21-use-debian-libjs-packages.
- Rewrite patch 23-load-debian-libjs.
- Remove old database schemas and add new 3.2 ones.
* Monitor all releases again.
* Drop patch 24-default-myisam and check with the new otrs.CheckDB.pl script,
if the available tables and the used storage engine are equal. If it is not
the case the installation should abort, so that the administrator can fix
his MySQL server or the already created tables.
Closes: #690306
* Remove deprecated packaging notes from README.Debian.
* Remove deprecated NEWS file from packaging.
* Remove deprecated files from otrs2.examples.
* Solve duplicate-changelog-files by not installing the CHANGES file.
* Remove some more deprecated files from otrs2.docs.
* Add lintian override for empty-binary package otrs.
* Remove some old permission fixes from debian/rules.
* Add upstream patch 01-innodb-fk-error to fix some foreign key errors if the
tables are created with InnoDB.
.
otrs2 (3.1.12+dfsg1-3) experimental; urgency=low
.
* Temporary monitor 3.1.x releases only.
* Migrate package from cdbs to minimal debhelper.
* Switch to xz compression and add a Pre-Depends on dpkg.
.
otrs2 (3.1.12+dfsg1-2) experimental; urgency=low
.
* Fix typo in patch 19-fix-SetPermissions-to-include-some-more-dirs.
.
otrs2 (3.1.12+dfsg1-1) experimental; urgency=low
.
* New upstream release.
- Refresh hunky patch 04-backup.
- Refresh hunky patch 13-dont-chown-links.
- Rewrite patch 19-fix-SetPermissions-to-include-some-more-dirs.
.
otrs2 (3.1.11+dfsg1-1) experimental; urgency=low
.
* New upstream release.
- Fixes XSS vulnerability as described in OSA-2012-03 and CVE-2012-4751.
* Bump Standards-Version to 3.9.4 (no changes needed).
* Merge 3.1.7+dfsg1-6 changelog.
.
otrs2 (3.1.10+dfsg1-1) experimental; urgency=low
.
* New upstream release.
* Merge debian/control from 3.1.7+dfsg1-4.
* Merge 3.1.7+dfsg1-4 and 3.1.7+dfsg1-5 changelog.
* Merge 2.4.9+dfsg1-3+squeeze3 changelog.
.
otrs2 (3.1.9+dfsg1-1) experimental; urgency=low
.
* New upstream release.
* Fix typo in the changelog of my 3.1.7+dfsg1-3 upload.
.
otrs2 (3.1.8+dfsg1-1) experimental; urgency=low
.
* New upstream release.
- Refresh hunky patch 24-default-myisam.
- Drop merged patch 27-imaptls-more-than-one-email.
Checksums-Sha1:
5f551f3f69765132314cb34cb49242bc35e91e60 1797 otrs2_3.2.11-1~bpo70+1.dsc
f24258debbb747bfc89dd941b7455e54a79b1923 18777884 otrs2_3.2.11.orig.tar.bz2
9d2bb4aeaf170af30d9076d3c99cf0c42be52d4e 39138 otrs2_3.2.11-1~bpo70+1.debian.tar.gz
a98048ea23cfed07c1ec4806665d3bdb699a4065 4452222 otrs2_3.2.11-1~bpo70+1_all.deb
1ee8c636aedd56391ffe47490efc63fced8933a9 164332 otrs_3.2.11-1~bpo70+1_all.deb
Checksums-Sha256:
92c3157e5467d25b241a6527eaf4ce89d57b885e0b3bf482cff670a2209e8068 1797 otrs2_3.2.11-1~bpo70+1.dsc
40c541aec80f4ce7de656c9b7a4f7492dc6bcdbf7716cb9dd58ea913531ff543 18777884 otrs2_3.2.11.orig.tar.bz2
e2a93cc922c500faa9a6a3e5a798b0d9a965399deb269736b8873001a89705c6 39138 otrs2_3.2.11-1~bpo70+1.debian.tar.gz
465273a625d97b82858d2c66c5615cd1c49fb406893f37c90154319df1ccfbd0 4452222 otrs2_3.2.11-1~bpo70+1_all.deb
a6cbbfae546e9e02b137d2f2dc690369843434d0446669d58018b9e16020d333 164332 otrs_3.2.11-1~bpo70+1_all.deb
Files:
303ed067ecb813fd112897ca6b0f2577 1797 web optional otrs2_3.2.11-1~bpo70+1.dsc
3769cca6ba676076eb5e67922cbbe53b 18777884 web optional otrs2_3.2.11.orig.tar.bz2
524b97f5d963f714ac498b80e9242f22 39138 web optional otrs2_3.2.11-1~bpo70+1.debian.tar.gz
18a6b8652cc4dc8fa5e3805b3c1dac4f 4452222 web optional otrs2_3.2.11-1~bpo70+1_all.deb
faeee4591d9eb421b04aa9d3eca48720 164332 web optional otrs_3.2.11-1~bpo70+1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=HtxD
-----END PGP SIGNATURE-----
Reply to: