[Bug 1192367] Re: No security release provided in Lucid for CVE-2013-3567
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Jun 19 11:55:21 UTC 2013
Thanks, we've fixed the date at the top of the file.
That file is the authoritative list of packages supported by the
security team, and contains the list the packages we deemed able to
support for 5 years instead of the base 3 years.
The puppet version in Lucid is ancient, is no longer supported by
upstream, and is substantially different from the puppet patches
provided for later versions. Even if it was on the list, we wouldn't be
able to update it since the recent security fixes have rewritten large
parts of code.
If migrating to a later LTS release isn't possible, I suggest perhaps
using the upstream packages available from Puppet Labs.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to puppet in Ubuntu.
https://bugs.launchpad.net/bugs/1192367
Title:
No security release provided in Lucid for CVE-2013-3567
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/1192367/+subscriptions
More information about the Ubuntu-server-bugs
mailing list