tag 582691 pending
thanks
Date: Fri Jun 11 00:51:24 2010 +0200
Author: Sean Finney <sean...@debian.org>
Commit ID: 91e3ecdf2484c3b078c5abcf795cfbc4fb117cae
Commit URL:
http://git.debian.org/?p=users/seanius/cacti.git;a=commitdiff;h=91e3ecdf2484c3b078c5abcf795cfbc4fb117cae
Patch URL:
http://git.debian.org/?p=users/seanius/cacti.git;a=commitdiff_plain;h=91e3ecdf2484c3b078c5abcf795cfbc4fb117cae
Patch for CVE-2010-2092/MOPS-2010-023: SQL Injection Vulnerability
Note: there are two other vulnerabilities mentioned in this report, but
they are both believed to already be fixed by previous security uploads.
"SQL injection and shell escaping issues reported by Bonsai Information
Security (http://www.bonsai-sec.com)" is believed to be fixed by
official_sql_injection_template_export.patch, and "Cross-site scripting
issues reported by VUPEN Security (http://www.vupen.com)" is fixed
with 08_CVE-2009-4032.patch.
Closes: #582691
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
