[suggest] Fw: [cacti-announce] Cacti 0.8.7b and 0.8.6k release -
IMPORTANT SECURITY UPDATES
Michael Mansour
mic at npgx.com.au
Tue Feb 12 05:16:41 CET 2008
Hi Dag,
Just as we were getting comfortable with the current releases, this just came
in...
Michael.
---------- Forwarded Message -----------
From: Tony Roman <roman at disorder.com>
To: cacti-announce at lists.sourceforge.net, Support requests/questions about
cacti <cacti-user at lists.sourceforge.net>
Sent: Mon, 11 Feb 2008 22:01:25 -0600
Subject: [cacti-announce] Cacti 0.8.7b and 0.8.6k release - IMPORTANT SECURITY
UPDATES
Important Security Fixes for Cacti
Multiple security vulnerabilities have been discovered in Cacti's web
interface:
* XSS vulnerabilities
* Path disclosure vulnerabilities
* SQL injection vulnerabilities
* HTTP response splitting vulnerabilities
All the above issues have been addressed in a new release of Cacti:
* 0.8.7b - http://www.cacti.net/downloads/cacti-0.8.7b.tar.gz
* 0.8.6k - http://www.cacti.net/downloads/cacti-0.8.6k.tar.gz
Patches for the following versions are available at:
* 0.8.7a - http://www.cacti.net/download_patches.php?version=0.8.7a
* 0.8.6j - http://www.cacti.net/download_patches.php?version=0.8.6j
Sincerely,
The Cacti Group
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
cacti-announce mailing list
cacti-announce at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/cacti-announce
------- End of Forwarded Message -------
More information about the suggest
mailing list