[Secure-testing-commits] r54175 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 1 11:37:09 UTC 2017
Author: carnil
Date: 2017-08-01 11:37:09 +0000 (Tue, 01 Aug 2017)
New Revision: 54175
Modified:
data/CVE/list
Log:
Add bug references for cacti issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-01 09:29:41 UTC (rev 54174)
+++ data/CVE/list 2017-08-01 11:37:09 UTC (rev 54175)
@@ -130,14 +130,14 @@
- potrace <unfixed>
NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/potrace/heap-buffer-overflow-mkbitmap
CVE-2017-12066 (Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in ...)
- - cacti <unfixed>
+ - cacti <unfixed> (bug #870354)
[stretch] - cacti <not-affected> (Vulnerable code introduced later)
[jessie] - cacti <not-affected> (Vulnerable code introduced later)
[wheezy] - cacti <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/Cacti/cacti/commit/bd0e586f6f46d814930226f1516a194e7e72293e
NOTE: https://github.com/Cacti/cacti/issues/877
CVE-2017-12065 (spikekill.php in Cacti before 1.1.16 might allow remote attackers to ...)
- - cacti <unfixed>
+ - cacti <unfixed> (bug #870353)
[stretch] - cacti <not-affected> (Vulnerable code introduced later)
[jessie] - cacti <not-affected> (Vulnerable code introduced later)
[wheezy] - cacti <not-affected> (Vulnerable code introduced later)
More information about the Secure-testing-commits
mailing list