Your message dated Sun, 20 Dec 2015 18:02:07 +0000
with message-id <[email protected]>
and subject line Bug#807599: fixed in cacti 0.8.8b+dfsg-8+deb8u3
has caused the Debian Bug report #807599,
regarding CVE-2015-8369: cacti: SQL injection in graph.php
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
807599: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807599
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Package: cacti
Version: 0.8.8f+ds1-2
Severity: important
Tags: security

The following vulnerability was published for Cacti. CVE identifier
CVE-2015-8369 was assigned for this isssue.

http://bugs.cacti.net/view.php?id=2646

- -- 
Henri Salo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=FoV7
-----END PGP SIGNATURE-----

--- End Message ---
--- Begin Message ---
Source: cacti
Source-Version: 0.8.8b+dfsg-8+deb8u3

We believe that the bug you reported is fixed in the latest version of
cacti, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Paul Gevers <[email protected]> (supplier of updated cacti package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 12 Dec 2015 21:08:55 +0100
Source: cacti
Binary: cacti
Architecture: source all
Version: 0.8.8b+dfsg-8+deb8u3
Distribution: jessie-security
Urgency: high
Maintainer: Cacti Maintainer <[email protected]>
Changed-By: Paul Gevers <[email protected]>
Description:
 cacti      - web interface for graphing of monitoring systems
Closes: 807599
Changes:
 cacti (0.8.8b+dfsg-8+deb8u3) jessie-security; urgency=high
 .
   * Add upstream patch to fix (Closes: #807599)
     - CVE-2015-8369 SQL Injection vulnerability in graph.php
Checksums-Sha1:
 820351ad00af38e9cee5efc638b418f79fb2c1c1 1666 cacti_0.8.8b+dfsg-8+deb8u3.dsc
 3e1ca4403fdbdfca9e213e9d5282119fe1a40d6e 114752 
cacti_0.8.8b+dfsg-8+deb8u3.debian.tar.xz
 971b12f134c85f1e515edb5ff2d530f807950283 1894486 
cacti_0.8.8b+dfsg-8+deb8u3_all.deb
Checksums-Sha256:
 3eb721fdb6aaaa0fbf5c055c72ae63a0828011ad890da2b8e9a99b2a77fd73b1 1666 
cacti_0.8.8b+dfsg-8+deb8u3.dsc
 0881091897454584f71c0ce3872056d04b7e25af70e10195eac6a7037cb1f61e 114752 
cacti_0.8.8b+dfsg-8+deb8u3.debian.tar.xz
 a78b7c21c96a26313c6d9b5823f4395fb79322d011552d58658142cfdafe2993 1894486 
cacti_0.8.8b+dfsg-8+deb8u3_all.deb
Files:
 18e8b266e1b53add261f1340dff43742 1666 web extra cacti_0.8.8b+dfsg-8+deb8u3.dsc
 efd5a882b199c5d95ec139d215a218d9 114752 web extra 
cacti_0.8.8b+dfsg-8+deb8u3.debian.tar.xz
 33ba46abed654ca6534cf9195085ef0f 1894486 web extra 
cacti_0.8.8b+dfsg-8+deb8u3_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAEBCAAGBQJWbxUqAAoJEJxcmesFvXUKVrcIAMiqmYrYnXeHodkcb3WzFzR6
FTL7fZWsJLKGktpdwSkjgMd/A6PWAG8oIenUq0EOS9R72Emt0D4L3Ff25sSO4gCg
4GdNVe2yJ87fO+Ca1t9RZQxDrgfSvTcw+5Qee+sJdbSBtCFzVZqMuGnD/+0nUHC/
vuX6K0Qgn/oQyCIDeWmXe87qV1/7MckphNGEuFStSLrR+eG06tuuBfmeKHb8S7cR
1efuTqISxx/xV4FwGSnoBAatIxsZd1wpxvcMIhi/lFZmrg40sEeSej/fo+Q1Rz8Q
InnzNKHsvr55eKt0PnDxrm+sa+WwgkPtzyLEpfU36R98YTyDpz8Rl0v0iOyF3Ug=
=BAN7
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to