[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2018-20725/cacti: stretch not-affected
Sylvain Beucler (@beuc)
beuc at debian.org
Mon Mar 28 10:30:40 BST 2022
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3f2b04f4 by Sylvain Beucler at 2022-03-28T10:57:28+02:00
CVE-2018-20725/cacti: stretch not-affected
- - - - -
d0e32ea3 by Sylvain Beucler at 2022-03-28T11:29:58+02:00
CVE-2018-20726/cacti: stretch not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -209548,16 +209548,18 @@ CVE-2019-6447 (The ES File Explorer File Manager application through 4.1.9.7.4 f
NOT-FOR-US: ES File Explorer File Manager application
CVE-2018-20726 (A cross-site scripting (XSS) vulnerability exists in host.php (via tre ...)
- cacti 1.2.1+ds1-1 (low)
- [stretch] - cacti <no-dsa> (Minor issue)
- [jessie] - cacti <ignored> (Minor issue)
+ [stretch] - cacti <not-affected> (Vulnerable code introduced later, previous form code refactored)
+ [jessie] - cacti <not-affected> (Vulnerable code introduced later, previous form code refactored)
NOTE: https://github.com/Cacti/cacti/commit/80c2a88fb2afb93f87703ba4641f9970478c102d
NOTE: https://github.com/Cacti/cacti/issues/2213
+ NOTE: Introduced by https://github.com/Cacti/cacti/commit/c42051908312340b168182ba809ea9bf47243331 (v1.0)
CVE-2018-20725 (A cross-site scripting (XSS) vulnerability exists in graph_templates.p ...)
- cacti 1.2.1+ds1-1 (low)
- [stretch] - cacti <no-dsa> (Minor issue)
- [jessie] - cacti <ignored> (Minor issue)
+ [stretch] - cacti <not-affected> (Vulnerable code introduced later, previous form code refactored)
+ [jessie] - cacti <not-affected> (Vulnerable code introduced later, previous form code refactored)
NOTE: https://github.com/Cacti/cacti/commit/80c2a88fb2afb93f87703ba4641f9970478c102d
NOTE: https://github.com/Cacti/cacti/issues/2214
+ NOTE: Introduced by https://github.com/Cacti/cacti/commit/94bcc756a15c9fc1b6595386e1d37ba5b08df4ec (v1.0)
CVE-2018-20724 (A cross-site scripting (XSS) vulnerability exists in pollers.php in Ca ...)
- cacti 1.2.1+ds1-1 (low)
[stretch] - cacti <not-affected> (Vulnerable code introduced in 1.0.0)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/fd9cae7542d6bf73d38f7c96d643c702cf8fdf0d...d0e32ea308a9c58d0ee1c53e5717fecaf749f64c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/fd9cae7542d6bf73d38f7c96d643c702cf8fdf0d...d0e32ea308a9c58d0ee1c53e5717fecaf749f64c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220328/e4eb04ac/attachment.htm>
More information about the debian-security-tracker-commits
mailing list