[Secure-testing-commits] r54172 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 1 09:27:16 UTC 2017
Author: carnil
Date: 2017-08-01 09:27:16 +0000 (Tue, 01 Aug 2017)
New Revision: 54172
Modified:
data/CVE/list
Log:
Add CVE-2017-12065/cacti
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-01 09:15:36 UTC (rev 54171)
+++ data/CVE/list 2017-08-01 09:27:16 UTC (rev 54172)
@@ -131,7 +131,12 @@
CVE-2017-12066 (Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in ...)
TODO: check
CVE-2017-12065 (spikekill.php in Cacti before 1.1.16 might allow remote attackers to ...)
- TODO: check
+ - cacti <unfixed>
+ [stretch] - cacti <not-affected> (Vulnerable code introduced later)
+ [jessie] - cacti <not-affected> (Vulnerable code introduced later)
+ [wheezy] - cacti <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/Cacti/cacti/commit/bd0e586f6f46d814930226f1516a194e7e72293e
+ NOTE: https://github.com/Cacti/cacti/issues/877
CVE-2017-12064 (The csv_log_html function in library/edihistory/edih_csv_inc.php in ...)
TODO: check
CVE-2017-12063
More information about the Secure-testing-commits
mailing list