- Add a vendor security patch: fix potential SQL injection

Approved by:	portmgr (erwin)

2 files changed, 6 insertions, 2 deletions

diff --git a/net-mgmt/cacti/Makefile b/net-mgmt/cacti/Makefile
index 2426414ecc16..4fb901a99bbd 100644
--- a/net-mgmt/cacti/Makefile
+++ b/net-mgmt/cacti/Makefile
@@ -16,7 +16,8 @@ DISTFILES=	${PORTNAME}-${SITEDISTVERSION}${EXTRACT_SUFX}
 PATCH_SITES=	http://www.cacti.net/downloads/patches/${SITEDISTVERSION}/
 PATCHFILES=	ping_php_version4_snmpgetnext.patch \
 		tree_console_missing_hosts.patch \
-		thumbnail_graphs_not_working.patch
+		thumbnail_graphs_not_working.patch \
+		sec_sql_injection-0.8.6j.patch
 PATCH_DIST_STRIP=	-p1
 
 MAINTAINER=	sem@FreeBSD.org
@@ -24,7 +25,7 @@ COMMENT=	Web-driven graphing interface for RRDTool
 
 RUN_DEPENDS=	rrdtool:${PORTSDIR}/databases/rrdtool
 
-PATCHLEVEL=	.3
+PATCHLEVEL=	.4
 PATCH_STRIP=	-p1
 USE_MYSQL=	yes
 USE_PHP=	mysql pcre session sockets snmp xml
diff --git a/net-mgmt/cacti/distinfo b/net-mgmt/cacti/distinfo
index 3e906444a90a..17d0ba7e322d 100644
--- a/net-mgmt/cacti/distinfo
+++ b/net-mgmt/cacti/distinfo
@@ -13,3 +13,6 @@ SIZE (tree_console_missing_hosts.patch) = 771
 MD5 (thumbnail_graphs_not_working.patch) = 1a3c9580a1f94d991502c8650d18b617
 SHA256 (thumbnail_graphs_not_working.patch) = 3b18602aed1aa8b9773a75a4e89413cd12ce2670fd185eae113de1aa2c1186bd
 SIZE (thumbnail_graphs_not_working.patch) = 1515
+MD5 (sec_sql_injection-0.8.6j.patch) = ebf8ce0e11845ebcd838847e7cc2912d
+SHA256 (sec_sql_injection-0.8.6j.patch) = 0f05946e598ce34b9507b8eeaa431c45280c2f6e07003cf583a11735fc01d245
+SIZE (sec_sql_injection-0.8.6j.patch) = 749