up to 0.8.8g; fixes CVE-2015-8604, CVE-2015-8377

- bug:0002652: CVE-2015-8604: SQL injection in graphs_new.php
- bug:0002655: CVE-2015-8377: SQL injection vulnerability in the host_new_graphs_save function in graphs_new.php

diff --git a/cacti.spec b/cacti.spec
index 2c757cccfdd4134d536a35b9a1de7fb7ef297242..576bac43e38b8230fdc43f3d9b7aadd0f56318f9 100644 (file)
--- a/cacti.spec
+++ b/cacti.spec
@@ -4,12 +4,12 @@
 Summary:       Cacti is a PHP frontend for rrdtool
 Summary(pl.UTF-8):     Cacti - frontend w PHP do rrdtoola
 Name:          cacti
-Version:       0.8.8f
+Version:       0.8.8g
 Release:       1
 License:       GPL v2
 Group:         Applications/WWW
 Source0:       http://www.cacti.net/downloads/%{name}-%{version}.tar.gz
-# Source0-md5: 8d90642b362f80c46c489c5531e2ba90
+# Source0-md5: 75f660d54152182e1dbbf0db73143098
 Source2:       %{name}.crontab
 Source3:       %{name}-apache.conf
 Source4:       %{name}-lighttpd.conf