From: Elan Ruusamäe <glen@delfi.ee>
Date: Sun, 4 Dec 2016 13:51:24 +0000 (+0200)
Subject: 0.8.8h
X-Git-Tag: auto/th/cacti-0.8.8h-1
X-Git-Url: http://git.pld-linux.org/?a=commitdiff_plain;h=edfe1a57d61bc0c35c6ff3d6a942f0a985b75ff4;p=packages%2Fcacti.git

0.8.8h

-bug:0002656: Authentication using web authentication as a user not in the cacti database allows complete access (regression)
-bug:0002667: Cacti SQL Injection Vulnerability
-bug:0002666: When click the [Clear] button after clicking the [Refresh] button in Preview Mode , fails to CSRFcheck
-bug:0002673: CVE-2016-3659 - Cacti graph_view.php SQL Injection Vulnerability
-bug:0002676: Outdated MIBs for non-unicast packets
-bug:0002677: Index is a MySQL 5.6 reserved word
-bug:0002681: generate_graph_def_name() generates reserved word "cf"
---

diff --git a/cacti.spec b/cacti.spec
index 576bac4..47a4016 100644
--- a/cacti.spec
+++ b/cacti.spec
@@ -4,12 +4,12 @@
 Summary:	Cacti is a PHP frontend for rrdtool
 Summary(pl.UTF-8):	Cacti - frontend w PHP do rrdtoola
 Name:		cacti
-Version:	0.8.8g
+Version:	0.8.8h
 Release:	1
 License:	GPL v2
 Group:		Applications/WWW
 Source0:	http://www.cacti.net/downloads/%{name}-%{version}.tar.gz
-# Source0-md5:	75f660d54152182e1dbbf0db73143098
+# Source0-md5:	e5a2eb9e1b187a92284f46e7d4cd6505
 Source2:	%{name}.crontab
 Source3:	%{name}-apache.conf
 Source4:	%{name}-lighttpd.conf