[Secure-testing-commits] r35614 - in data: . CVE DSA
Alessandro Ghedini
ghedo at moszumanska.debian.org
Wed Jul 22 09:27:49 UTC 2015
Author: ghedo
Date: 2015-07-22 09:27:49 +0000 (Wed, 22 Jul 2015)
New Revision: 35614
Modified:
data/CVE/list
data/DSA/list
data/dsa-needed.txt
Log:
Reserve DSA for cacti
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-22 09:21:58 UTC (rev 35613)
+++ data/CVE/list 2015-07-22 09:27:49 UTC (rev 35614)
@@ -149,36 +149,48 @@
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/07/06/7
CVE-2015-XXXX [SQL Injection in host_templates.php]
- cacti 0.8.8e+ds1-1
+ [jessie] - cacti 0.8.8b+dfsg-8+deb8u2
+ [wheezy] - cacti 0.8.8a+dfsg-5+deb7u6
[squeeze] - cacti 0.8.7g-1+squeeze7
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/07/18/4
NOTE: http://bugs.cacti.net/view.php?id=2584
NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7731
CVE-2015-XXXX [SQL Injection in graph_templates.php]
- cacti 0.8.8e+ds1-1
+ [jessie] - cacti 0.8.8b+dfsg-8+deb8u2
+ [wheezy] - cacti 0.8.8a+dfsg-5+deb7u6
[squeeze] - cacti 0.8.7g-1+squeeze7
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/07/18/4
NOTE: http://bugs.cacti.net/view.php?id=2583
NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7731
CVE-2015-XXXX [SQL Injection in data_templates.php]
- cacti 0.8.8e+ds1-1
+ [jessie] - cacti 0.8.8b+dfsg-8+deb8u2
+ [wheezy] - cacti 0.8.8a+dfsg-5+deb7u6
[squeeze] - cacti 0.8.7g-1+squeeze7
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/07/18/4
NOTE: http://bugs.cacti.net/view.php?id=2582
NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7731
CVE-2015-XXXX [SQL Injection in cdef.php]
- cacti 0.8.8e+ds1-1
+ [jessie] - cacti 0.8.8b+dfsg-8+deb8u2
+ [wheezy] - cacti 0.8.8a+dfsg-5+deb7u6
[squeeze] - cacti 0.8.7g-1+squeeze7
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/07/18/4
NOTE: http://bugs.cacti.net/view.php?id=2580
NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7731
CVE-2015-XXXX [SQL Injection Vulnerability in data sources]
- cacti 0.8.8e+ds1-1
+ [jessie] - cacti 0.8.8b+dfsg-8+deb8u2
+ [wheezy] - cacti 0.8.8a+dfsg-5+deb7u6
[squeeze] - cacti 0.8.7g-1+squeeze7
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/07/18/4
NOTE: http://bugs.cacti.net/view.php?id=2579
NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7731
CVE-2015-XXXX [SQL Injection Vulnerability in graph items and graph template items]
- cacti 0.8.8e+ds1-1
+ [jessie] - cacti 0.8.8b+dfsg-8+deb8u2
+ [wheezy] - cacti 0.8.8a+dfsg-5+deb7u6
[squeeze] - cacti 0.8.7g-1+squeeze7
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/07/18/4
NOTE: http://bugs.cacti.net/view.php?id=2574
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2015-07-22 09:21:58 UTC (rev 35613)
+++ data/DSA/list 2015-07-22 09:27:49 UTC (rev 35614)
@@ -1,3 +1,7 @@
+[22 Jul 2015] DSA-3312-1 cacti - security update
+ {CVE-2015-4634}
+ [wheezy] - cacti 0.8.8a+dfsg-5+deb7u6
+ [jessie] - cacti 0.8.8b+dfsg-8+deb8u2
[20 Jul 2015] DSA-3311-1 mariadb-10.0 - security update
{CVE-2015-0433 CVE-2015-0441 CVE-2015-0499 CVE-2015-0501 CVE-2015-0505 CVE-2015-2568 CVE-2015-2571 CVE-2015-2573 CVE-2015-3152}
[jessie] - mariadb-10.0 10.0.20-0+deb8u1
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2015-07-22 09:21:58 UTC (rev 35613)
+++ data/dsa-needed.txt 2015-07-22 09:27:49 UTC (rev 35614)
@@ -21,9 +21,6 @@
aptdaemon
For jessie-security compat layer for PackageKit needs to be dropped
--
-cacti (ghedo)
- Maintainer prepared uploads for wheezy and jessie
---
eglibc (aurel32)
some of the other no-dsa bugs could be fixed along
--
More information about the Secure-testing-commits
mailing list