The following builds have been pushed to Fedora 10 updates-testing
cacti-0.8.7e-3.fc10 libtool-1.5.26-4.fc10.1
Details about builds:
================================================================================ cacti-0.8.7e-3.fc10 (FEDORA-2009-12570) An rrd based graphing tool -------------------------------------------------------------------------------- Update Information:
This fix contains several official patches from cacti: Command Line Add Graphs Syntax SNMP Invalid Responses Template Import/Export Duplication Cross-Site Scripting Fixes http://www.cacti.net/download_patches.php -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 1 2009 Mike McGrath mmcgrath@redhat.com - 0.8.7e-3 - Pulling in some official patches - #541279 - #541962 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #541279 - CVE-2009-4032 Cacti: Multiple cross-site scripting flaws https://bugzilla.redhat.com/show_bug.cgi?id=541279 --------------------------------------------------------------------------------
================================================================================ libtool-1.5.26-4.fc10.1 (FEDORA-2009-12540) The GNU Portable Library Tool -------------------------------------------------------------------------------- Update Information:
libltdl may load and execute code from a library in the current directory. -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 2 2009 Karsten Hopp karsten@redhat.com 1.5.26-4.1 - add fix for CVE-2009-3736: libltdl may load and execute code from a library in the current directory -------------------------------------------------------------------------------- References:
[ 1 ] Bug #537941 - CVE-2009-3736 libtool: libltdl may load and execute code from a library in the current directory https://bugzilla.redhat.com/show_bug.cgi?id=537941 --------------------------------------------------------------------------------