Subject: CVS commit: pkgsrc/net/cacti
From: Adam Ciarcinski
Date: 2015-03-11 14:56:46
Message id: 20150311135646.4B75A98@cvs.netbsd.org

Log Message:
Changes 0.8.8c:

Important Security Fixes

CVE-2013-5588 - XSS issue via installer or device editing
CVE-2013-5589 - SQL injection vulnerability in device editing
CVE-2014-2326 - XSS issue via CDEF editing
CVE-2014-2327 - Cross-site request forgery (CSRF) vulnerability
CVE-2014-2328 - Remote Command Execution Vulnerability in graph export
CVE-2014-4002 - XSS issues in multiple files
CVE-2014-5025 - XSS issue via data source editing
CVE-2014-5026 - XSS issues in multiple files

Important Updates

New graph tree view
Updated graph list and graph preview
Refactor graph tree view to remove GPL incompatible code
Updated command line database upgrade utility
Graph zooming now from everywhere

Files:
RevisionActionfile
1.26modifypkgsrc/net/cacti/Makefile
1.7modifypkgsrc/net/cacti/PLIST
1.6modifypkgsrc/net/cacti/distinfo
1.3modifypkgsrc/net/cacti/patches/patch-install_index.php
1.1removepkgsrc/net/cacti/patches/patch-cdef.php
1.1removepkgsrc/net/cacti/patches/patch-graph_xport.php
1.1removepkgsrc/net/cacti/patches/patch-host.php
1.1removepkgsrc/net/cacti/patches/patch-lib_api_device.php
1.1removepkgsrc/net/cacti/patches/patch-lib_graph_export.php
1.1removepkgsrc/net/cacti/patches/patch-lib_rrd.php