[Secure-testing-commits] r54819 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Aug 17 19:22:41 UTC 2017
Author: carnil
Date: 2017-08-17 19:22:41 +0000 (Thu, 17 Aug 2017)
New Revision: 54819
Modified:
data/CVE/list
Log:
Add new cacti issue, #872478
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-17 18:15:38 UTC (rev 54818)
+++ data/CVE/list 2017-08-17 19:22:41 UTC (rev 54819)
@@ -1,3 +1,10 @@
+CVE-2017-XXXX [XSS in spikekill.php via method parameter]
+ - cacti <unfixed> (bug #872478)
+ [stretch] - cacti <not-affected> (Vulnerable code introduced later)
+ [jessie] - cacti <not-affected> (Vulnerable code introduced later)
+ [wheezy] - cacti <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/Cacti/cacti/issues/907
+ NOTE: https://github.com/Cacti/cacti/commit/a032ce0be6a4ea47862c594e40a619ac8de1ef99
CVE-2017-1000108
NOT-FOR-US: Jenkins Input Step Plugin
CVE-2017-1000107
More information about the Secure-testing-commits
mailing list