[Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2019-17357 in cacti for jessie LTS.

Wed Dec 11 10:19:28 GMT 2019


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8b0454a6 by Chris Lamb at 2019-12-11T10:17:30Z
Triage CVE-2019-17357 in cacti for jessie LTS.

- - - - -
88ea58ce by Chris Lamb at 2019-12-11T10:18:47Z
data/dla-needed.txt: Triage cacti for jessie LTS.

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -12010,6 +12010,7 @@ CVE-2019-17358
 CVE-2019-17357
 	RESERVED
 	- cacti <unfixed>
+	[jessie] - cacti <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/Cacti/cacti/issues/3025
 	NOTE: https://github.com/Cacti/cacti/commit/d6dc48503bbcde0717e7a93df7638fd4796200f4
 CVE-2019-17356 (The Infinite Design application 3.4.12 for Android sends a username an ...)


=====================================
data/dla-needed.txt
=====================================
@@ -15,6 +15,8 @@ ansible
   NOTE: CVE-2019-14846 should be an easy fix.
   NOTE: CVE-2019-14858's upstream patch is too big; fails to work properly. (utkarsh2102)
 --
+cacti
+--
 clamav (Hugo Lefeuvre)
   NOTE: waiting for 0.102.1 to enter stretch/buster.
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/77feac01d2afd62b60b044b1057aaff6d3c1e9b5...88ea58cece9b3a0e21f0c352da0dd4f7a5542add

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/77feac01d2afd62b60b044b1057aaff6d3c1e9b5...88ea58cece9b3a0e21f0c352da0dd4f7a5542add
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191211/c4e4c2f5/attachment.html>
