[Bug 1210837] Re: Sync cacti 0.8.8b+dfsg-2 (universe) from Debian sid (main)
Paul Gevers
1210837 at bugs.launchpad.net
Sat Aug 10 18:18:28 UTC 2013
This bug was fixed in the package cacti - 0.8.8b+dfsg-2
---------------
cacti (0.8.8b+dfsg-2) unstable; urgency=low
* CVE-2013-1435 fix cause a regression in the handling of empty COMMENT
lines in the rrd legend. Fixed by upstream:
fix_COMMENT_in_graph_regression_from_CVE-2013-1435.patch (Closes: #719156)
* Update jquery stylesheet to provide the cacti background color
-- Paul Gevers <elbrus at debian.org> Fri, 09 Aug 2013 22:34:26 +0200
cacti (0.8.8b+dfsg-1) unstable; urgency=low
* New upstream release
- Fixes SQL or command line injection via snmp settings or
graph creation or edition that allows privileged users to execute
arbitrary SQL commands or command line commands. CVE-2013-1434 and
CVE-2013-1435
- poller_cache_rebuild_on_install.patch included
* Add d/rules get-orig-source target and accompanying script
* Update japanese translation, thank victory (Closes: #717203)
* Update vcs-* fields (thanks lintian)
* Update standards (no changes needed)
* Update years and my address in d/copyright
* Allow any php5 SAPI provider to satify cacti dependency, thanks
Ondřej Surý (php5 maintainer). Thus reverting the solution to bug
#654843 as the original report was not a bug but a reporter mistake.
libapache2-mod-fcgid does not provide php5 SAPI.
-- Paul Gevers <elbrus at debian.org> Wed, 07 Aug 2013 20:46:58 +0200
--
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1210837
Title:
Sync cacti 0.8.8b+dfsg-2 (universe) from Debian sid (main)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cacti/+bug/1210837/+subscriptions
More information about the ubuntu-archive
mailing list