Bug#844315: tzdata version breaks dist-upgrade leaving version from oldstable security installed

I like my systems to have packages from stable and stable security only. So when I do a dist-upgrade and remove old/outdated/not needed packages I expect to have all remaining packages to be from stable. tzdata - although with a newer version - being stuck on oldstable, is not expected. It doesn

Bug#844315: tzdata version breaks dist-upgrade leaving version from oldstable security installed

Package: tzdata Version: 2016i-0+deb7u1 Severity: critical Upgrading a fully updated wheezy system (incl. security repo) to jessie (incl. security repo) results in tzdata not being updated because the version in wheezy-security is newer than in jessie. Package tzdata on amd64 wheezy:

Bug#809260: SQL Injection still in the code

Guys, you just reopened the SQL injection vuln again! Have a look at https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807599#57 where I have described this already. cacti-0.8.7g-1+squeeze9+deb6u12 is vulnerable now again to SQL Injection. Test it: http://example.com/cacti/graph.php?act

Bug#701814: os-prober

Hi, please see #788062 which just corrupted a fs mounted inside a qemu VM. On the host (Debian Jessie) grub-mount was available! thermoman -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#788062: os-prober corrupts LVs/partitions while being mounted inside a VM

Package: os-prober Version: 1.65 Severity: critical update-grub on a vhost running qemu/kvm virtual machines while grub and os-prober is installed on the host might corrupt guest virtual machines / guest disks. Host % lvs LV VGAttr LSize root vg_foobar_