Package: icinga-web Version: 1.12.0-1 Severity: important Tags: security Hi,
I just noticed that the icinga-web package embeds its own copy of (at least) phpseclib (as available in the php-seclib package) as well as an old version (as shipped in Wheezy, and apparently abandoned upstream: no commits in their repository for three years) of doctrine (packaging of version 2 happens in the php-doctrine-* name space). Please consider depending (at least) on php-seclib instead of the embedded copy. Regards David
signature.asc
Description: Digital signature
