[Bug 1192367] Re: No security release provided in Lucid for CVE-2013-3567

Marc Deslauriers marc.deslauriers at canonical.com
Wed Jun 19 11:55:21 UTC 2013

Thanks, we've fixed the date at the top of the file.

That file is the authoritative list of packages supported by the
security team, and contains the list the packages we deemed able to
support for 5 years instead of the base 3 years.

The puppet version in Lucid is ancient, is no longer supported by
upstream, and is substantially different from the puppet patches
provided for later versions. Even if it was on the list, we wouldn't be
able to update it since the recent security fixes have rewritten large
parts of code.

If migrating to a later LTS release isn't possible, I suggest perhaps
using the upstream packages available from Puppet Labs.

You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to puppet in Ubuntu.

  No security release provided in Lucid for CVE-2013-3567

To manage notifications about this bug go to:

More information about the Ubuntu-server-bugs mailing list