[Pkg-cacti-maint] cacti_0.8.8b+dfsg-8+deb8u1_amd64.changes ACCEPTED into proposed-updates->stable-new
Debian FTP Masters
ftpmaster at ftp-master.debian.org
Wed Jun 24 19:04:14 UTC 2015
Mapping stable-security to proposed-updates.
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 22 Jun 2015 20:55:59 +0200
Source: cacti
Binary: cacti
Architecture: source all
Version: 0.8.8b+dfsg-8+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Cacti Maintainer <pkg-cacti-maint at lists.alioth.debian.org>
Changed-By: Paul Gevers <elbrus at debian.org>
Description:
cacti - web interface for graphing of monitoring systems
Changes:
cacti (0.8.8b+dfsg-8+deb8u1) jessie-security; urgency=high
.
* Security update
- CVE-2015-2665 Cross-site scripting (XSS) vulnerability in Cacti
before 0.8.8d allows remote attackers to inject arbitrary web script
or HTML via unspecified vectors.
- CVE-2015-4342 SQL Injection and Location header injection from cdef
id
- CVE-2015-4454 SQL injection vulnerability in the
get_hash_graph_template function in lib/functions.php in Cacti before
0.8.8d allows remote attackers to execute arbitrary SQL commands via
the graph_template_id parameter to graph_templates.php.
- Unassigned CVE SQL injection VN:JVN#78187936 / TN:JPCERT#98968540
Checksums-Sha1:
2b0176fbf608b0e5518b25b52ca9039b51e607e5 1666 cacti_0.8.8b+dfsg-8+deb8u1.dsc
20b635f831d3219e93c11ea435c3389ab429cad7 2081800 cacti_0.8.8b+dfsg.orig.tar.bz2
f9d389e41b002d3fbded86421d51f458d5de3046 106740 cacti_0.8.8b+dfsg-8+deb8u1.debian.tar.xz
5a9c67628345cf8effff16f3215f21d191bc4a7c 1894060 cacti_0.8.8b+dfsg-8+deb8u1_all.deb
Checksums-Sha256:
f1a7f37319ea6d618888a5006ca0051380d7c574fd72af057cc4abaaab4bb4c2 1666 cacti_0.8.8b+dfsg-8+deb8u1.dsc
bc4b733055e66e1f75e67e697d97793c072ce82e31c5cfa21aab781cc470171b 2081800 cacti_0.8.8b+dfsg.orig.tar.bz2
366cdf950707e7dd02521304d25dbedd0a8655c2742fe7dc4535d9a0771d6aa1 106740 cacti_0.8.8b+dfsg-8+deb8u1.debian.tar.xz
0cfa18e6f178c9fef8b2a78960832ad6b727f7a921c0226e601ac098fae1b902 1894060 cacti_0.8.8b+dfsg-8+deb8u1_all.deb
Files:
4980e3ea8d53aeeb0ff40b70e15745a2 1666 web extra cacti_0.8.8b+dfsg-8+deb8u1.dsc
337a1717260090a420918aac627c61ba 2081800 web extra cacti_0.8.8b+dfsg.orig.tar.bz2
b9a83621f156ebadd20828b52a6da53f 106740 web extra cacti_0.8.8b+dfsg-8+deb8u1.debian.tar.xz
48424a8b3771373e6b3ee0ed736b2a74 1894060 web extra cacti_0.8.8b+dfsg-8+deb8u1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAEBCAAGBQJViaZBAAoJEJxcmesFvXUKp7UIAKjy/gcYwnG64mupMialsT/y
IW62YYgjrot53BbTwxFGBDNgSYruu45PskT9W6n3HPZQ4nOGD9wVwIrn2he6iptV
ULi186gscC086Va4ut9MkQtaum00EeMNJo+9sFLyn3aaPeAuZv64u7fHNOm5HQYH
IbeJEwYxOh+xXTS405HA9zFTEfYBDgBA6M60q5Z8mTsNEbvvL28cqokrv7olHxHJ
C4SqhMv6SeOc44fpcEcWcekUMJ5mDfrZIFlt6JWOh/TPmRoHURk76GMNuWZVmHhG
5oNKURsXGQswikmYwqYFy8qa0/xAmY0iTeSUC2DH0MsS1nAgYCmBClJx0HJniKo=
=A9xE
-----END PGP SIGNATURE-----
Thank you for your contribution to Debian.
More information about the Pkg-cacti-maint
mailing list