[Bug 130350] Please sync cacti (universe) from Debian unstable (main)

Michael Bienia michael at vorlon.ping.de
Sat Aug 4 12:45:06 BST 2007


Public bug reported:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

 affects ubuntu/cacti
 status confirmed
 subscribe ubuntu-archive

Please sync cacti (universe) from Debian unstable (main).
Changelog since current gutsy version 0.8.6j-1:

cacti (0.8.6j-1.1) unstable; urgency=high

  * Non-maintainer upload with the permission of the maintainer
  * Fix DoS caused by large values passed to the graph_height,
    graph_width, graph_start and graph_end parameter parameters
    (Closes: #429224) Fixes: CVE-2007-3112, CVE-2007-3113

 -- Steffen Joeris <white at security.skolelinux.no>  Fri,  3 Aug 2007
19:27:17 +0200


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4 (GNU/Linux)

iQCVAwUBRrRmsKPP1313boLqAQMK+AP+N56UQZdLXpwUKsmcmg5/Y8w+9CIYtGWZ
sovhcLn4RsU0zEw99BZplLFKF57H9GKthDDb/owmhEvioGABAJyhI3HGzmDLFs8a
Mk/x91/B4LixdsQB3LjQpwZ4mGcFxEQY0xF+6njoM0s6WCB1WHHV6VrHGU6WIVjv
tbHOSFrXG7c=
=7EOC
-----END PGP SIGNATURE-----

** Affects: cacti (Ubuntu)
     Importance: Undecided
         Status: Confirmed

-- 
Please sync cacti (universe) from Debian unstable (main)
https://bugs.launchpad.net/bugs/130350
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.



More information about the ubuntu-archive mailing list