-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 3.0 (quilt) Source: cacti Binary: cacti Architecture: all Version: 0.8.8b+dfsg-8 Maintainer: Cacti Maintainer <[email protected]> Uploaders: Sean Finney <[email protected]>, Mahyuddin Susanto <[email protected]>, Paul Gevers <[email protected]> Homepage: http://www.cacti.net/ Standards-Version: 3.9.5 Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-cacti/cacti.git Vcs-Git: git://anonscm.debian.org/pkg-cacti/cacti.git Build-Depends: debhelper (>= 7.0.50~), po-debconf Package-List: cacti deb web extra arch=all Checksums-Sha1: 20b635f831d3219e93c11ea435c3389ab429cad7 2081800 cacti_0.8.8b+dfsg.orig.tar.bz2 57f6900a6f3cf80bcb39b04941d58cbc7d1bb2ae 105400 cacti_0.8.8b+dfsg-8.debian.tar.xz Checksums-Sha256: bc4b733055e66e1f75e67e697d97793c072ce82e31c5cfa21aab781cc470171b 2081800 cacti_0.8.8b+dfsg.orig.tar.bz2 50d010a3d1c4e191ffc2ce29280e596bf530e6c25c5a50c0bb85cd45f6a67349 105400 cacti_0.8.8b+dfsg-8.debian.tar.xz Files: 337a1717260090a420918aac627c61ba 2081800 cacti_0.8.8b+dfsg.orig.tar.bz2 ef65435c1ec59de5785fc86499c01e02 105400 cacti_0.8.8b+dfsg-8.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBCAAGBQJT8kTDAAoJEJxcmesFvXUK2HsH/1FWytrbl33De6VK0yIc7U39 dHDErgkLi3+lrgIp05lB4/O9Zr+2ka+l7fdnq2nrPJQuqTLoHLF9WPPgX8hwvko6 IHdla108bq+4JzCzEk7T3b/S12cgUPcOJsE80eV51fMNJVhNRPgol/EVNj22txNK Jna11bJqnESQQA5SETwE/S0woT461oMCODXQLIANuSD1/VXzQRBz+Yn/YO+ZwthX qTkha0+Pqewm31LcTbf4vqfnfRTQAiObncbCJVPNxeLrdZKX6DZLE+lPU8JU5M8R lITVvcYLiag+51DN7v6HGmNl93jos1Kqtm4jDyRfvLF5tgEGOSnzD0yK60FNBFw= =vmUs -----END PGP SIGNATURE----- Changes: cacti (0.8.8b+dfsg-8) unstable; urgency=high * CVE-2014-5261 Unsufficient input sanitation leads to shell command injection possibilities * CVE-2014-5262 Incomplete and incorrect input parsing leads to SQL injection attack scenarios * Fix for CVE-2014-5043 was incomplete, improve patch * Change CVE-2014-4002 patch to include upstream updated commits -- Paul Gevers <[email protected]> Mon, 18 Aug 2014 19:57:43 +0200
