[SECURITY] [DLA 374-3] cacti regression update

2016-01-0412:01:24

lists.debian.org

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.014 Low

EPSS

Percentile

86.2%

JSON

Package : cacti
Version : 0.8.7g-1+squeeze9+deb6u13
CVE ID : CVE-2015-8369
Debian Bug : 807599

It was discovered that there was a regression in the patch intended to fix
CVE-2015-8369 in the recent upload of cacti 0.8.7g-1+squeeze9+deb6u12.

For Debian 6 Squeeze, this issue has been fixed in cacti version
0.8.7g-1+squeeze9+deb6u13.

Regards,

  ,&#x27;&#x27;`.
 : :&#x27;  :     Chris Lamb
 `. `&#x27;`      [email protected] / chris-lamb.co.uk
   `-

OSVersionArchitecturePackageVersionFilename
Debian6allcacti< 0.8.7g-1+squeeze9+deb6u11cacti_0.8.7g-1+squeeze9+deb6u11_all.deb
Debian7allcacti< 0.8.8a+dfsg-5+deb7u7cacti_0.8.8a+dfsg-5+deb7u7_all.deb
Debian8allcacti< 0.8.8b+dfsg-8+deb8u3cacti_0.8.8b+dfsg-8+deb8u3_all.deb
Debian6allcacti< 0.8.7g-1+squeeze9+deb6u13cacti_0.8.7g-1+squeeze9+deb6u13_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	6	all	cacti	< 0.8.7g-1+squeeze9+deb6u11	cacti_0.8.7g-1+squeeze9+deb6u11_all.deb
Debian	7	all	cacti	< 0.8.8a+dfsg-5+deb7u7	cacti_0.8.8a+dfsg-5+deb7u7_all.deb
Debian	8	all	cacti	< 0.8.8b+dfsg-8+deb8u3	cacti_0.8.8b+dfsg-8+deb8u3_all.deb
Debian	6	all	cacti	< 0.8.7g-1+squeeze9+deb6u13	cacti_0.8.7g-1+squeeze9+deb6u13_all.deb