-
cacti (1.1.18+ds1-1) unstable; urgency=medium
* New upstream version 1.1.18
- Drop patches from upstream and refresh the others
* Bump standards version to 4.0.1 (no changes)
* Stop installing csrf/LICENSE file (thanks lintian)
-- Paul Gevers <email address hidden> Sat, 19 Aug 2017 18:46:41 +0200
-
cacti (1.1.17+ds1-2) unstable; urgency=medium
* CVE-2017-12927 XSS vulnerability in spikekill.php (Closes: #872478)
* [tests] fix grep expression to unblock Ubuntu
* [tests] Add improve-boost-logging-on-fresh-installs.patch and don't
filter on the fixed messages
* Fix typo in previous changelog message
-- Paul Gevers <email address hidden> Fri, 18 Aug 2017 21:15:23 +0200
-
cacti (1.1.17+ds1-1) unstable; urgency=medium
* New upstream version 1.1.17
* Make the autopkgtest strickter now upstream reduced the noise
-- Paul Gevers <email address hidden> Wed, 16 Aug 2017 14:04:31 +0200
-
cacti (1.1.16+ds1-1) unstable; urgency=medium
* New upstream release
- Fixes CVE-2017-12065 spikekill.php might allow remote attackers to
execute arbitrary code via the avgnan, outlier-start, or outlier-end
parameter (Closes: #870353)
- Fixes CVE-2017-12066 Cross-site scripting (XSS) vulnerability in
aggregate_graphs.php (Closes: #870354)
-- Paul Gevers <email address hidden> Thu, 03 Aug 2017 09:38:54 -0400
-
cacti (1.1.15+ds1-1) unstable; urgency=medium
* New upstream release
- Fixes CVE-2017-11691 Cross-site scripting (XSS) vulnerability in
auth_profile.php (Closes: #869848)
* Lower the Depends on dbc to include ~ to ease backports
-- Paul Gevers <email address hidden> Thu, 27 Jul 2017 10:40:05 -0400
-
cacti (1.1.13+ds1-1) unstable; urgency=medium
* New upstream release
* Update documentation from upstream
-- Paul Gevers <email address hidden> Fri, 14 Jul 2017 20:37:39 +0200
-
cacti (1.1.12+ds1-1) unstable; urgency=medium
* New upstream release
* CVE-2017-10970 XSS vulnerability via link.php fixed (Closes: #867532)
* Add version to jquery-tablesorter
* Make sure that autopkgtests at least run again
-- Paul Gevers <email address hidden> Fri, 07 Jul 2017 21:07:43 +0200
-
cacti (1.1.10+ds1-6) unstable; urgency=medium
* Fix upgrade script to find the upgrade functions in the Debian file
layout (Closes: #866773) Thanks to ISHIKAWA Mutsumi
* Add upgrade code for grant on mysql.time_zone_name
* Bump version of dbconfig-common to ensure we have the fix for postinst
code working
-- Paul Gevers <email address hidden> Tue, 04 Jul 2017 07:16:45 +0200
-
cacti (1.1.10+ds1-5) unstable; urgency=medium
* Fix piuparts issue where the scripts are changed due to loading the
template files in the postinst script. See upstream bug #810. (Closes:
#866140)
-- Paul Gevers <email address hidden> Tue, 27 Jun 2017 21:41:26 +0200
-
cacti (1.1.10+ds1-4) unstable; urgency=medium
* Upload to unstable
* Bump standards version to 4.0.0 (no changes)
-- Paul Gevers <email address hidden> Tue, 20 Jun 2017 21:45:13 +0200
-
cacti (0.8.8h+ds1-10) unstable; urgency=medium
* Fix upgrades from before 0.8.8h+ds1-8; that version started to ship
symlinks to directories in libjs-jquery-jstree without making sure
dpkg handled that properly during upgrades (Closes: #861858)
-- Paul Gevers <email address hidden> Fri, 05 May 2017 13:55:33 +0200
-
cacti (0.8.8h+ds1-9) unstable; urgency=medium
* Add enable_faster_polling_than_cron.patch to replace the use of the
deprecated split() function (Closes: #860271)
-- Paul Gevers <email address hidden> Thu, 13 Apr 2017 22:05:30 +0200
-
cacti (0.8.8h+ds1-8ubuntu0.1) zesty; urgency=medium
* debian/patches/enable_faster_polling_than_cron.patch: split() is
deprecated in PHP 7, causing the code to fail. Closes: #860271,
LP: #1662027. Thanks to Paul Gevers <email address hidden>.
-- Nishanth Aravamudan <email address hidden> Fri, 14 Apr 2017 21:26:51 -0700
-
cacti (0.8.8h+ds1-8) unstable; urgency=medium
* Depend on libjs-jquery-jstree instead of using embedded version
* Replace use_debian_javascript_packages.patch with links to the Debian
packages instead (more transparent)
* Add fix_export_for_debian_packages.patch to avoid export failure
-- Paul Gevers <email address hidden> Wed, 14 Dec 2016 21:20:24 +0100