Your message dated Mon, 04 Jan 2016 12:20:25 +0000
with message-id <[email protected]>
and subject line Bug#807599: fixed in cacti 0.8.7g-1+squeeze9+deb6u13
has caused the Debian Bug report #807599,
regarding CVE-2015-8369: cacti: SQL injection in graph.php
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
807599: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807599
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Package: cacti
Version: 0.8.8f+ds1-2
Severity: important
Tags: security
The following vulnerability was published for Cacti. CVE identifier
CVE-2015-8369 was assigned for this isssue.
http://bugs.cacti.net/view.php?id=2646
- --
Henri Salo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=FoV7
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
Source: cacti
Source-Version: 0.8.7g-1+squeeze9+deb6u13
We believe that the bug you reported is fixed in the latest version of
cacti, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Chris Lamb <[email protected]> (supplier of updated cacti package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 04 Jan 2016 11:37:24 +0000
Source: cacti
Binary: cacti
Architecture: source all
Version: 0.8.7g-1+squeeze9+deb6u13
Distribution: squeeze-lts
Urgency: high
Maintainer: Sean Finney <[email protected]>
Changed-By: Chris Lamb <[email protected]>
Description:
cacti - Frontend to rrdtool for monitoring systems and services
Closes: 807599 809260
Changes:
cacti (0.8.7g-1+squeeze9+deb6u13) squeeze-lts; urgency=high
.
* Correct yet another regression in patch for CVE-2015-8369, introduced in
0.8.7g-1+squeeze9+deb6u12. Thanks to Marcel Meckel <[email protected]>
(Closes: #809260, #807599)
Checksums-Sha1:
75b63fbf05d95ebe971234ab996c3bdf883252c0 1804
cacti_0.8.7g-1+squeeze9+deb6u13.dsc
a5a710653e158b1bc950de0a1e2c60ee364bf782 2236916 cacti_0.8.7g.orig.tar.gz
80caa2da964794c63c779602f0b84d2162cc667a 74415
cacti_0.8.7g-1+squeeze9+deb6u13.diff.gz
5acda7659b545c46706c9b4fff5b647bd84edc30 2103244
cacti_0.8.7g-1+squeeze9+deb6u13_all.deb
Checksums-Sha256:
eca202ea78a2a2091d21ec4cf319a975d74b7d84a4c4f3cd8af9976f3d1982e3 1804
cacti_0.8.7g-1+squeeze9+deb6u13.dsc
d09b3bf54f51bd42b2db0a62521cf6e408716978f75d6509ec56027c49c44585 2236916
cacti_0.8.7g.orig.tar.gz
bd241b2f55c8763f86181ffdd030294485539ec90b846fba7868efb772a9f251 74415
cacti_0.8.7g-1+squeeze9+deb6u13.diff.gz
06dc316f3deac06429d5563fc6dc102ea4bd1ea973c9f978bf5e40e87f97cc0e 2103244
cacti_0.8.7g-1+squeeze9+deb6u13_all.deb
Files:
196e9b4a676e0f1a141de77b7d926b1d 1804 web extra
cacti_0.8.7g-1+squeeze9+deb6u13.dsc
268421cb1a58d3444f7ecbddb4c4b016 2236916 web extra cacti_0.8.7g.orig.tar.gz
6554863c748a7110700c7d5f5da9ff1d 74415 web extra
cacti_0.8.7g-1+squeeze9+deb6u13.diff.gz
45da56084a03c03c70fef375b66edf0f 2103244 web extra
cacti_0.8.7g-1+squeeze9+deb6u13_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=FgYj
-----END PGP SIGNATURE-----
--- End Message ---