[Pkg-cacti-maint] cacti_0.8.8b+dfsg-8+deb8u1_amd64.changes ACCEPTED into proposed-updates->stable-new, proposed-updates

Debian FTP Masters ftpmaster at ftp-master.debian.org
Sat Jun 27 10:47:06 UTC 2015 


Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 22 Jun 2015 20:55:59 +0200
Source: cacti
Binary: cacti
Architecture: source all
Version: 0.8.8b+dfsg-8+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Cacti Maintainer <pkg-cacti-maint at lists.alioth.debian.org>
Changed-By: Paul Gevers <elbrus at debian.org>
Description:
 cacti      - web interface for graphing of monitoring systems
Changes:
 cacti (0.8.8b+dfsg-8+deb8u1) jessie-security; urgency=high
 .
   * Security update
     - CVE-2015-2665 Cross-site scripting (XSS) vulnerability in Cacti
       before 0.8.8d allows remote attackers to inject arbitrary web script
       or HTML via unspecified vectors.
     - CVE-2015-4342 SQL Injection and Location header injection from cdef
       id
     - CVE-2015-4454 SQL injection vulnerability in the
       get_hash_graph_template function in lib/functions.php in Cacti before
       0.8.8d allows remote attackers to execute arbitrary SQL commands via
       the graph_template_id parameter to graph_templates.php.
     - Unassigned CVE SQL injection VN:JVN#78187936 / TN:JPCERT#98968540
Checksums-Sha1:
 2b0176fbf608b0e5518b25b52ca9039b51e607e5 1666 cacti_0.8.8b+dfsg-8+deb8u1.dsc
 20b635f831d3219e93c11ea435c3389ab429cad7 2081800 cacti_0.8.8b+dfsg.orig.tar.bz2
 f9d389e41b002d3fbded86421d51f458d5de3046 106740 cacti_0.8.8b+dfsg-8+deb8u1.debian.tar.xz
 5a9c67628345cf8effff16f3215f21d191bc4a7c 1894060 cacti_0.8.8b+dfsg-8+deb8u1_all.deb
Checksums-Sha256:
 f1a7f37319ea6d618888a5006ca0051380d7c574fd72af057cc4abaaab4bb4c2 1666 cacti_0.8.8b+dfsg-8+deb8u1.dsc
 bc4b733055e66e1f75e67e697d97793c072ce82e31c5cfa21aab781cc470171b 2081800 cacti_0.8.8b+dfsg.orig.tar.bz2
 366cdf950707e7dd02521304d25dbedd0a8655c2742fe7dc4535d9a0771d6aa1 106740 cacti_0.8.8b+dfsg-8+deb8u1.debian.tar.xz
 0cfa18e6f178c9fef8b2a78960832ad6b727f7a921c0226e601ac098fae1b902 1894060 cacti_0.8.8b+dfsg-8+deb8u1_all.deb
Files:
 4980e3ea8d53aeeb0ff40b70e15745a2 1666 web extra cacti_0.8.8b+dfsg-8+deb8u1.dsc
 337a1717260090a420918aac627c61ba 2081800 web extra cacti_0.8.8b+dfsg.orig.tar.bz2
 b9a83621f156ebadd20828b52a6da53f 106740 web extra cacti_0.8.8b+dfsg-8+deb8u1.debian.tar.xz
 48424a8b3771373e6b3ee0ed736b2a74 1894060 web extra cacti_0.8.8b+dfsg-8+deb8u1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAEBCAAGBQJViaZBAAoJEJxcmesFvXUKp7UIAKjy/gcYwnG64mupMialsT/y
IW62YYgjrot53BbTwxFGBDNgSYruu45PskT9W6n3HPZQ4nOGD9wVwIrn2he6iptV
ULi186gscC086Va4ut9MkQtaum00EeMNJo+9sFLyn3aaPeAuZv64u7fHNOm5HQYH
IbeJEwYxOh+xXTS405HA9zFTEfYBDgBA6M60q5Z8mTsNEbvvL28cqokrv7olHxHJ
C4SqhMv6SeOc44fpcEcWcekUMJ5mDfrZIFlt6JWOh/TPmRoHURk76GMNuWZVmHhG
5oNKURsXGQswikmYwqYFy8qa0/xAmY0iTeSUC2DH0MsS1nAgYCmBClJx0HJniKo=
=A9xE
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.

More information about the Pkg-cacti-maint mailing list