[packages/cacti] up to 0.8.8e; fixes CVE-2015-4634
glen
glen at pld-linux.org
Thu Jul 16 12:48:32 CEST 2015
commit 48a17e216ec13dbcfd27d5f315a77625b5e03605
Author: Elan Ruusamäe <glen at delfi.ee>
Date: Thu Jul 16 13:47:39 2015 +0300
up to 0.8.8e; fixes CVE-2015-4634
-bug: Fixed issue with graph zooming failing to work
-bug: Fixed various SQL Injection vectors
-bug#0002569: Impossible to have a URL pointing directly to a graph
-bug#0002574: SQL Injection Vulnerabilities in graph items and graph template items
-bug#0002577: CVE-2015-4634 - SQL injection in graphs.php
-bug#0002579: SQL Injection Vulnerabilities in data sources
-bug#0002580: SQL Injection in cdef.php
-bug#0002582: SQL Injection in data_templates.php
-bug#0002583: SQL Injection in graph_templates.php
-bug#0002584: SQL Injection in host_templates.php
-bug#0002586: Cannot delete data sources from the GUI
-bug#0002592: graph_view.php - viewing host in new tab - Undefined index: nodeid
-bug#0002594: status_fail_date and status_rec_date are set incorrectly after host is marked down
-bug#0002597: Incorrect value in Hosts column on Host Templates page
-bug#0002598: Incorrect row number in Devices -> (Edit) page
cacti.spec | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
---
diff --git a/cacti.spec b/cacti.spec
index 71875ef..9c0238a 100644
--- a/cacti.spec
+++ b/cacti.spec
@@ -4,12 +4,12 @@
Summary: Cacti is a PHP frontend for rrdtool
Summary(pl.UTF-8): Cacti - frontend w PHP do rrdtoola
Name: cacti
-Version: 0.8.8d
+Version: 0.8.8e
Release: 1
License: GPL v2
Group: Applications/WWW
Source0: http://www.cacti.net/downloads/%{name}-%{version}.tar.gz
-# Source0-md5: 4507d6d189cf0dc881bf00d47537037a
+# Source0-md5: 1fa14a9b9fda1b40a29698bcbc3ca34e
Source2: %{name}.crontab
Source3: %{name}-apache.conf
Source4: %{name}-lighttpd.conf
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/cacti.git/commitdiff/48a17e216ec13dbcfd27d5f315a77625b5e03605
More information about the pld-cvs-commit
mailing list