[Bug 1210837] [NEW] Sync cacti 0.8.8b+dfsg-2 (universe) from Debian sid (main)

Launchpad Bug Tracker 1210837 at bugs.launchpad.net
Sat Aug 10 18:14:22 UTC 2013


You have been subscribed to a public bug by Paul Gevers (paul-climbing):

Please sync cacti 0.8.8b+dfsg-2 (universe) from Debian sid (main)

Changelog entries since current saucy version 0.8.8a+dfsg-7:

cacti (0.8.8b+dfsg-2) unstable; urgency=low

  * CVE-2013-1435 fix cause a regression in the handling of empty COMMENT
    lines in the rrd legend. Fixed by upstream:
    fix_COMMENT_in_graph_regression_from_CVE-2013-1435.patch (Closes: #719156)
  * Update jquery stylesheet to provide the cacti background color

 -- Paul Gevers <elbrus at debian.org>  Fri, 09 Aug 2013 22:34:26 +0200

cacti (0.8.8b+dfsg-1) unstable; urgency=low

  * New upstream release
    - Fixes SQL or command line injection via snmp settings or
      graph creation or edition that allows privileged users to execute
      arbitrary SQL commands or command line commands. CVE-2013-1434 and
      CVE-2013-1435
    - poller_cache_rebuild_on_install.patch included
  * Add d/rules get-orig-source target and accompanying script
  * Update japanese translation, thank victory (Closes: #717203)
  * Update vcs-* fields (thanks lintian)
  * Update standards (no changes needed)
  * Update years and my address in d/copyright
  * Allow any php5 SAPI provider to satify cacti dependency, thanks
    Ondřej Surý (php5 maintainer). Thus reverting the solution to bug
    #654843 as the original report was not a bug but a reporter mistake.
    libapache2-mod-fcgid does not provide php5 SAPI.

 -- Paul Gevers <elbrus at debian.org>  Wed, 07 Aug 2013 20:46:58 +0200

** Affects: cacti (Ubuntu)
     Importance: Wishlist
         Status: Confirmed

-- 
Sync cacti 0.8.8b+dfsg-2 (universe) from Debian sid (main)
https://bugs.launchpad.net/bugs/1210837
You received this bug notification because you are a member of Ubuntu Package Archive Administrators, which is subscribed to the bug report.



More information about the ubuntu-archive mailing list