[Git][security-tracker-team/security-tracker][master] LTS: update CVE-2020-25706/cacti
Roberto C. Sánchez (@roberto)
roberto at debian.org
Wed Sep 22 21:03:33 BST 2021
Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bbdf2ed0 by Roberto C. Sánchez at 2021-09-22T16:03:12-04:00
LTS: update CVE-2020-25706/cacti
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -69382,9 +69382,10 @@ CVE-2020-25707
CVE-2020-25706 (A cross-site scripting (XSS) vulnerability exists in templates_import. ...)
- cacti 1.2.14+ds1-1
[buster] - cacti <no-dsa> (Minor issue)
- [stretch] - cacti <no-dsa> (Minor issue)
+ [stretch] - cacti <not-affected> (Vulnerable code introduced in 1.0.0)
NOTE: https://github.com/Cacti/cacti/issues/3723
NOTE: https://github.com/Cacti/cacti/commit/39458efcd5286d50e6b7f905fedcdc1059354e6e
+ NOTE: introduced by https://github.com/Cacti/cacti/commit/0ba5711f09338a7019ed5622701a7effd83ba701
CVE-2020-25705 (A flaw in ICMP packets in the Linux kernel may allow an attacker to qu ...)
{DLA-2494-1 DLA-2483-1}
- linux 5.9.6-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bbdf2ed095aa198fe0942a4c9bffa180e4a438bb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bbdf2ed095aa198fe0942a4c9bffa180e4a438bb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210922/9c795f39/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list