UbuntuUpdates.org

Package "cacti"

Name: cacti

Description:

web interface for graphing of monitoring systems
Latest version: 0.8.8f+ds1-4ubuntu4.16.04.2
Release: xenial (16.04)
Level: updates
Repository: universe
Homepage: http://www.cacti.net/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "cacti"

All arch deb package
APT INSTALL

Other versions of "cacti" in Xenial

Repository Area Version
base universe 0.8.8f+ds1-4ubuntu4
security universe 0.8.8f+ds1-4ubuntu4.16.04.2

Changelog

Version: 0.8.8f+ds1-4ubuntu4.16.04.2 2017-02-15 03:06:37 UTC

  cacti (0.8.8f+ds1-4ubuntu4.16.04.2) xenial-security; urgency=medium

  * Security update (backport patches from upstream)
    - CVE-2016-2313 - auth_login.php access restrictions could be bypassed
    - CVE-2016-3172 - SQL injection vulnerability in tree.php
    - CVE-2016-3659 - SQL injection vulnerability in graph_view.php

 -- Paul Gevers <email address hidden> Sat, 11 Feb 2017 14:07:55 +0100
Source diff to previous version
CVE-2016-2313 auth_login.php in Cacti before 0.8.8g allows remote authenticated users who use web authentication to bypass intended access restrictions by logging
CVE-2016-3172 SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the paren
CVE-2016-3659 SQL injection vulnerability in graph_view.php in Cacti 0.8.8.g allows remote authenticated users to execute arbitrary SQL commands via the host_group

Version: 0.8.8f+ds1-4ubuntu4.16.04.1 2016-06-20 11:06:32 UTC

  cacti (0.8.8f+ds1-4ubuntu4.16.04.1) xenial; urgency=medium

  * Update make_cacti_sql_mode-strict_compatible.patch to also drop
    ONLY_FULL_GROUP_BY (LP: #1588813)

 -- Paul Gevers <email address hidden> Fri, 03 Jun 2016 13:46:55 +0200
Source diff to previous version
1588813 cacti still not compatible with MySQL 5.7 default sql_mode

Version: 0.8.8f+ds1-4ubuntu4.16.04 2016-05-30 21:06:41 UTC

  cacti (0.8.8f+ds1-4ubuntu4.16.04) xenial; urgency=medium

  * Add make_cacti_sql_mode-strict_compatible.patch to enable cacti to
    work with the default settings of MySQL 5.7 (LP: #1578144)

 -- Paul Gevers <email address hidden> Sat, 14 May 2016 21:00:40 +0200
1578144 cacti and cacti-spine are not compatible with MySQL 5.7 default sql_mode


About   -   Send Feedback to @ubuntu_updates