[Git][security-tracker-team/security-tracker][master] Adjust tracking for CVE-2021-3816/cacti

Tue Jan 25 20:34:56 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b4e8087f by Salvatore Bonaccorso at 2022-01-25T21:34:06+01:00
Adjust tracking for CVE-2021-3816/cacti

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -22185,10 +22185,9 @@ CVE-2021-41382 (Plastic SCM before 10.0.16.5622 mishandles the WebAdmin server m
 CVE-2021-41381 (Payara Micro Community 5.2021.6 and below allows Directory Traversal. ...)
 	NOT-FOR-US: Payara Micro Community
 CVE-2021-3816 (Cacti 1.1.38 allows authenticated users with User Management permissio ...)
-	- cacti 1.2.19+ds1-2
-	[stretch] - cacti <not-affected> (Vulnerable code introduced later)
-	NOTE: https://github.com/Cacti/cacti/commit/9a45ef5b0d1b195db9d7cfd5ae60f0426460aa9a
-	NOTE: https://github.com/Cacti/cacti/issues/4356
+	- cacti 1.2.1+ds1-1
+	NOTE: https://github.com/Cacti/cacti/issues/1882
+	NOTE: Fixed by: https://github.com/Cacti/cacti/commit/2b8097c06030ab72c5b3bdadb23dceb5332f0e94 (1.2.0-beta1)
 CVE-2021-41380 (** DISPUTED ** RealVNC Viewer 6.21.406 allows remote VNC servers to ca ...)
 	NOT-FOR-US: RealVNC
 CVE-2021-41379 (Windows Installer Elevation of Privilege Vulnerability ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4e8087f52a14bfd1922c46911635b5f5038b1cd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4e8087f52a14bfd1922c46911635b5f5038b1cd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220125/d37a5ac8/attachment.htm>
