* Upload to unstable * New upstream release - CVE-2015-2665 Cross-site scripting (XSS) vulnerability in Cacti before 0.8.8d allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. - CVE-2015-4342 SQL Injection and Location header injection from cdef id - CVE-2015-4454 SQL injection vulnerability in the get_hash_graph_template function in lib/functions.php in Cacti before 0.8.8d allows remote attackers to execute arbitrary SQL commands via the graph_template_id parameter to graph_templates.php. - Unassigned CVE VN:JVN#78187936 / TN:JPCERT#98968540 Fixed SQL injection * Remove Sean from the list of uploaders. Thanks for all the fish (Closes: #773436) * Fix d/p/07_cli-include-path.patch (LP: #1433665) * Update debian/patches/fix_php_strict_warning_in_ping.patch for partial upstream fix * Include the virtual alternative for the recommends on mysql-server (Closes: #781982) * Upstream dropped unused javascripts, remove them from d/copyright * Add patch to have upgrade script mention version 0.8.8d i.s.o. 0.8.8c