-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 18 Aug 2014 19:57:43 +0200 Source: cacti Binary: cacti Architecture: source all Version: 0.8.8b+dfsg-8 Distribution: unstable Urgency: high Maintainer: Cacti Maintainer <pkg-cacti-maint@lists.alioth.debian.org> Changed-By: Paul Gevers <elbrus@debian.org> Description: cacti - web interface for graphing of monitoring systems Changes: cacti (0.8.8b+dfsg-8) unstable; urgency=high . * CVE-2014-5261 Unsufficient input sanitation leads to shell command injection possibilities * CVE-2014-5262 Incomplete and incorrect input parsing leads to SQL injection attack scenarios * Fix for CVE-2014-5043 was incomplete, improve patch * Change CVE-2014-4002 patch to include upstream updated commits Checksums-Sha1: 878032731cdb13694216d708a51eed1b2ec9114c 1655 cacti_0.8.8b+dfsg-8.dsc 57f6900a6f3cf80bcb39b04941d58cbc7d1bb2ae 105400 cacti_0.8.8b+dfsg-8.debian.tar.xz 1d429bb6d962158b9a522fd0ecba1a107bd0b2b9 1892912 cacti_0.8.8b+dfsg-8_all.deb Checksums-Sha256: ebe4acfe5cd96b7d93a4d99adccea78506fc3ad99a64aed0929663ccb237fa09 1655 cacti_0.8.8b+dfsg-8.dsc 50d010a3d1c4e191ffc2ce29280e596bf530e6c25c5a50c0bb85cd45f6a67349 105400 cacti_0.8.8b+dfsg-8.debian.tar.xz 72e30e3fe0351154a20d8b14ef7b36fad9901cc913429a8b21e6eb202d3c7b28 1892912 cacti_0.8.8b+dfsg-8_all.deb Files: 0afd2d2c0a05d88421760b1a7da56f22 1892912 web extra cacti_0.8.8b+dfsg-8_all.deb b12e8b2b6f60a030ef1afbd0f3934d55 1655 web extra cacti_0.8.8b+dfsg-8.dsc ef65435c1ec59de5785fc86499c01e02 105400 web extra cacti_0.8.8b+dfsg-8.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBCAAGBQJT8kTDAAoJEJxcmesFvXUKYrgH/2aSOJ5M5MsBeBMkUKMRxhFo pJSL/s3eIFIKRJlu0khjOSQcSMpn7ZLKbuUHetUwMJ04CdLfRld+WZJALPFMNZ2l ZDIQWYa8hMf4AAqG6Dz+p1yK74/HbvE9NPlyG+LY/6m4/9WGbWx6VCh58993N4zJ gWiDpwRg8OiS1bR6z9iQP5yffj/26j5AhRCaF7tKpfqdna2jZNVMgAwXt2+AifxU abQhZ6Jb3fDW4Mwcny4K0wh9zB3EfeAWmSW7I1d4fdCeMbGnVfcycRCze4wuYx7o MoYqNqB5DNR9BChb2xuL+zmFdRnmEg1E7pVG+q9wMvnBLNDZZ7CWBpqRXOluIAE= =Vv9L -----END PGP SIGNATURE-----
