File _patchinfo of Package patchinfo

<patchinfo incident="3854">
  <issue id="934187" tracker="bnc">VUL-0: CVE-2015-4342: cacti: Multiple XSS and SQL injection vulnerabilities</issue>
  <issue id="CVE-2015-4342" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>worldcitizen</packager>
  <description>cacti was updated to 0.8.8d to fix multiple security issues and bugs.

The following vulnerabilities were fixed:

* SQL injection VN: JVN#78187936 / TN:JPCERT#98968540
* Cacti Cross-Site Scripting Vulnerability Notification [FG-VD-15-017]
* SQL Injection and Location header injection from cdef id CVE-2015-4342
* SQL injection in graph templates 

Also contains bug fixes in the upstream 0.8.8d release.
</description>
  <summary>Security update for cacti</summary>
</patchinfo>