Inspired from RC bugs 2011/50,

Here is my Debian activity:

  1. 652371, [CVE-2011-4824] SQL injection issue in auth_login.php. Committed in git and forwarded to Sean and Security Team via RT #3538

  2. 624516, CVE-2010-1644: cacti: XSS issues in host.php and data_sources.php, Committed in git and forwarded to Sean and Security Team via RT #3538

And here is my Ubuntu activity:

  1. 905662, Merge dasher 4.11-1.1 (universe) from Debian testing (main)

  2. 905671, Merge mini-dinstall 0.6.29 (universe) from Debian testing (main). I got 100 times upload for this!

  3. 905665, Merge dbus-java 2.8-2 (universe) from Debian testing (main)

  4. 905252, CVE-2011-4130 in lucid, maverick, natty

  5. 906291, Merge laptop-mode-tools 1.60-1 (universe) from Debian testing (main)

  6. 906340, Merge meta-gnome3 1:3.0+6 (universe) from Debian testing (main)

  7. 906368, Merge udftools 1.0.0b3-14.2 (universe) from Debian testing (main)

  8. 906369, Merge avfs 1.0.0-2 (universe) from Debian testing (main)

What next? Fixing CVE-2011-4824 in Lucid, Maverick, Natty, Oneiric. I don’t want to fixing in precise because i still waiting 0.8.7i from debian which already committed in git repos.