Your message dated Sun, 20 Dec 2015 18:07:40 +0000
with message-id <[email protected]>
and subject line Bug#807599: fixed in cacti 0.8.8a+dfsg-5+deb7u7
has caused the Debian Bug report #807599,
regarding CVE-2015-8369: cacti: SQL injection in graph.php
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
807599: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807599
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Package: cacti
Version: 0.8.8f+ds1-2
Severity: important
Tags: security
The following vulnerability was published for Cacti. CVE identifier
CVE-2015-8369 was assigned for this isssue.
http://bugs.cacti.net/view.php?id=2646
- --
Henri Salo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=FoV7
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
Source: cacti
Source-Version: 0.8.8a+dfsg-5+deb7u7
We believe that the bug you reported is fixed in the latest version of
cacti, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Paul Gevers <[email protected]> (supplier of updated cacti package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sat, 12 Dec 2015 21:24:23 +0100
Source: cacti
Binary: cacti
Architecture: source all
Version: 0.8.8a+dfsg-5+deb7u7
Distribution: wheezy-security
Urgency: high
Maintainer: Cacti Maintainer <[email protected]>
Changed-By: Paul Gevers <[email protected]>
Description:
cacti - web interface for graphing of monitoring systems
Closes: 807599
Changes:
cacti (0.8.8a+dfsg-5+deb7u7) wheezy-security; urgency=high
.
* Add upstream patch to fix (Closes: #807599)
- CVE-2015-8369 SQL Injection vulnerability in graph.php
Checksums-Sha1:
5e02775aefebac18ee559f075cfaa386db219ec8 1666 cacti_0.8.8a+dfsg-5+deb7u7.dsc
aaa44fdc280e3b424db77a27d606f61ab1516a40 135989
cacti_0.8.8a+dfsg-5+deb7u7.debian.tar.gz
0d880fa2a0fbe6b2112142f9d5dd8f96d314ccd8 2152916
cacti_0.8.8a+dfsg-5+deb7u7_all.deb
Checksums-Sha256:
c75b941b356d0b875261defa1d349eca60a11182e270a89d1153a3653a4505f1 1666
cacti_0.8.8a+dfsg-5+deb7u7.dsc
9d6a6160c2e590f8a849a5143eafdc165d4127cff525501c4f1b034d52157e43 135989
cacti_0.8.8a+dfsg-5+deb7u7.debian.tar.gz
9ad4c407644ec6a731923fd83ccfe807c1a9a8f863b063455fb74f22a1887a1d 2152916
cacti_0.8.8a+dfsg-5+deb7u7_all.deb
Files:
12052fc7153535b516ef1ae1ec4457ce 1666 web extra cacti_0.8.8a+dfsg-5+deb7u7.dsc
c054c3acf573852c0b096302b178df16 135989 web extra
cacti_0.8.8a+dfsg-5+deb7u7.debian.tar.gz
6ea8ac73b2c816f35ddaba48202b4330 2152916 web extra
cacti_0.8.8a+dfsg-5+deb7u7_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAEBCAAGBQJWbxWoAAoJEJxcmesFvXUKiCMH/1r5nHQmOUDnmYAOn8pOJnoO
mT370m/vCpZEsGbXZnXvNJTm7o7tjKFXCNNen2R1DNpnGT4xDbL4MK1Tbqp+3SEJ
8LjG8nr96bgqUNFqZNdipGcEtlYvK8VjCNPlmteL1CkQ8Ag+rL4MKPYHs7xbyqkq
zPqHvHPc3SNoq8Z+X8h2OaLOg8cKR7buunMQjlBepH5qGTZt+vBMl+8pZr0/LDkH
OGzKRSYWwd8eeP3geTAicx8A4qxyH4YLVx+A4IB+XaoDN72u9n8T30RvScL+J1mB
B86YFyE09WNZdVSDAzGHSdMNbCdPccxO5LRlzeiGwPEdIqbs0HYcBlumHTFTapo=
=nD0B
-----END PGP SIGNATURE-----
--- End Message ---