The following builds have been pushed to Fedora 10 updates-testing
cacti-0.8.7e-3.fc10
libtool-1.5.26-4.fc10.1
Details about builds:
================================================================================
cacti-0.8.7e-3.fc10 (FEDORA-2009-12570)
An rrd based graphing tool
--------------------------------------------------------------------------------
Update Information:
This fix contains several official patches from cacti: Command Line Add
Graphs Syntax SNMP Invalid Responses Template Import/Export Duplication
Cross-Site Scripting Fixes
http://www.cacti.net/download_patches.php
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 1 2009 Mike McGrath <mmcgrath(a)redhat.com> - 0.8.7e-3
- Pulling in some official patches
- #541279
- #541962
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #541279 - CVE-2009-4032 Cacti: Multiple cross-site scripting flaws
https://bugzilla.redhat.com/show_bug.cgi?id=541279
--------------------------------------------------------------------------------
================================================================================
libtool-1.5.26-4.fc10.1 (FEDORA-2009-12540)
The GNU Portable Library Tool
--------------------------------------------------------------------------------
Update Information:
libltdl may load and execute code from a library in the current directory.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 2 2009 Karsten Hopp <karsten(a)redhat.com> 1.5.26-4.1
- add fix for CVE-2009-3736:
libltdl may load and execute code from a library in the current directory
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #537941 - CVE-2009-3736 libtool: libltdl may load and execute code from a
library in the current directory
https://bugzilla.redhat.com/show_bug.cgi?id=537941
--------------------------------------------------------------------------------