|
|
Subscribe / Log in / New account

Debian-LTS alert DLA-374-1 (cacti)



From:
    	      Chris Lamb <lamby@debian.org> 


To:
    	      debian-lts-announce@lists.debian.org 


Subject:
    	      [SECURITY] [DLA 374-1] cacti security update 


Date:
    	      Sat, 26 Dec 2015 13:28:51 +0000


Message-ID:
    	      <1451136531.2365326.476607466.401B4E52@webmail.messagingengine.com>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : cacti
Version        : 0.8.7g-1+squeeze9+deb6u11
CVE IDs        : CVE-2015-8369 CVE-2015-8377
Debian Bug     : 807599

It was discovered that there were SQL injection vulnerabilities in
cacti, a web interface for graphing of monitoring systems.

For Debian 6 Squeeze, this issue has been fixed in cacti version
0.8.7g-1+squeeze9+deb6u11.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=3Amh
-----END PGP SIGNATURE-----
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds