Ubuntu
mantis package

mantis 1.2.8-1 source package in Ubuntu

Changelog

mantis (1.2.8-1) unstable; urgency=medium

  * Urgency medium: fixed serious bug (policy violations)
    + debian/mantis.config:
      Allow set empty password in debconf config to prevent errors in 
      unattended installations (--frontend:Noninteractive --priority=critical)
      (Closes: #640589)
  * New Security Upstream Release (1.2.8)
  * debian/README.Debian: 
    + Added info about setting up custom variables.
  * debian/patches:
    + dropped: Fixed in new upstream version (1.2.8) 
      Multiple vulnerabilities (LFI/XSS/Projax/PHPSELF)
      000-Fix-640297-LFI-XSS-injection-bug-action-group-0.diff
      000-Fix-640297-LFI-XSS-injection-bug-action-group-1.diff
      000-Fix-640297-LFI-XSS-injection-via-PHPSELF.diff
      000-Fix-640297-Projax-XSS-injection.diff
  * debian/copyright: updated
  * debian/mantis.lintian-overrides: added

mantis (1.2.7-1) unstable; urgency=high

  * Security Upstream Release (1.2.7)
  * Urgency high: Fixes critical LFI/XSS vulnerabilites
  * debian/NEWS: updated
  * debian/README.Debian: updated
  * debian/doc/README.LDAP: updated 
  * debian/po debconf translations:
    + Added Swedish translation, thanks to
       Martin Bagge (Closes: #640061)
    + Fixed Language Field: sv
  * debian/patches:
    + dropped:
      000-fix-security-bug-bts-638321-filterapi-multiple-XSS.diff
      Bug fixed in new upstream release.
   + updated:
      000-cleanup-gitignore-file-from-orignal-tarball.diff
   + added: Multiple vulnerabilities (LFI/XSS/Projax/PHPSELF)
     Thanks to David Hicks, MantisBT developer. (Closes: #640297)
     000-Fix-640297-LFI-XSS-injection-bug-action-group-0.diff
     000-Fix-640297-LFI-XSS-injection-bug-action-group-1.diff
     000-Fix-640297-LFI-XSS-injection-via-PHPSELF.diff
     000-Fix-640297-Projax-XSS-injection.diff
 -- Jamie Strandboge <email address hidden>   Mon,  12 Sep 2011 18:01:23 +0000

Upload details

Uploaded by:
Jamie Strandboge
Uploaded to:
Oneiric
Original maintainer:
Silvia Alvarez
Architectures:
all
Section:
web
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Oneiric: [FULLYBUILT] i386

Downloads

File Size SHA-256 Checksum
mantis_1.2.8.orig.tar.gz 3.1 MiB eab079f9cabf82786af50649b6d186e518b21b8fcb9e4b53cdf04f6c9d9c0f03
mantis_1.2.8-1.debian.tar.gz 51.4 KiB 694b01e9ae140db861a5bb1697a45d29c140644ac14cf75fd6777902ab8cf74b
mantis_1.2.8-1.dsc 1.8 KiB d334e64c5a8cb922053ff4cad20e5faf68ecce0f0f3c171a998ff55332f67aff

Available diffs

View changes file

Binary packages built by this source

mantis: web-based bug tracking system

 Mantis is an issue tracker that is implemented in PHP.
 The main features include:
   * Web Based
   * Supports any platform that runs PHP
   * Available in 68 localizations
   * Customizable Issue Pages
   * Multiple Projects per instance
   * Support for Projects, Sub-Projects, and Categories.
   * Users can have a different access level per project
   * Changelog Support
   * Roadmap
   * User View Page
   * Search and Filter
   * Built-in Reporting (reports / graphs)
   * Time Tracking
   * Custom Fields
   * Email notifications
   * Users can monitor specific issues
   * Attachments
   * Issue Change History
   * RSS Feeds
   * Customizable issue workflow
   * Sponsorships Support
   * Export to csv, Microsoft Excel, Microsoft Word
   * No limit on the number of users, issues, or projects.
   * Public / Private Projects
   * Public / Private Notes
   * Public / Private Issues
   * Public / Private News
   * Issue Relationships
   * Authentication
     + Default Mantis Authentication (recommended)
     + LDAP Integration
     + HTTP Basic Authentication Support
     + Active Directory Integration (patches available)
   * Multi-DBMS Support (using ADODB)
     + MySQL
     + MS SQL
     + PostgreSQL
     + Oracle (experimental)
   * Webservice (SOAP) interface
   * and more