[Git][security-tracker-team/security-tracker][master] CVE-2018-10060,CVE-2018-10061/cacti: reference patches

Sylvain Beucler (@beuc) beuc at debian.org
Mon Mar 28 11:48:53 BST 2022 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
abf2a9b4 by Sylvain Beucler at 2022-03-28T12:44:12+02:00
CVE-2018-10060,CVE-2018-10061/cacti: reference patches

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -253135,12 +253135,19 @@ CVE-2018-10061 (Cacti before 1.1.37 has XSS because it makes certain htmlspecial
 	[jessie] - cacti <no-dsa> (Minor issue)
 	[wheezy] - cacti <no-dsa> (Minor issue)
 	NOTE: https://github.com/Cacti/cacti/issues/1457
+	NOTE: https://github.com/Cacti/cacti/commit/3ba47881c5f8f6a01606a5afd4f1934e32d97e92 (v1.1.37)
+	NOTE: https://github.com/Cacti/cacti/commit/1f1b353b2e5ac9380cbea06dd9f6f8a20133379d (v1.1.37)
+	NOTE: https://github.com/Cacti/cacti/commit/cb57a6e87751fbc6645bde1f8c16d9dca3765c4a (v1.1.37)
+	NOTE: https://github.com/Cacti/cacti/commit/0730ce38735d146de098fc450c4420c1a3fbdf95 (v1.1.37)
+	NOTE: https://github.com/Cacti/cacti/commit/0eb5a973c9b563b1f8c9e1d181baef06c0e89d56 (v1.1.37)
+	NOTE: https://github.com/Cacti/cacti/commit/3a76892c178e27ce6e7189fd0ba17581f91154e8 (v1.1.37)
 CVE-2018-10060 (Cacti before 1.1.37 has XSS because it does not properly reject uninte ...)
 	- cacti 1.1.37+ds1-1 (low)
 	[stretch] - cacti <no-dsa> (Minor issue)
 	[jessie] - cacti <no-dsa> (Minor issue)
 	[wheezy] - cacti <no-dsa> (Minor issue)
 	NOTE: https://github.com/Cacti/cacti/issues/1457
+	NOTE: https://github.com/Cacti/cacti/commit/ddaec1c5ac2dc759a201feecbc91698e7bbeefba (v1.1.37)
 CVE-2018-10059 (Cacti before 1.1.37 has XSS because the get_current_page function in l ...)
 	- cacti 1.1.37+ds1-1
 	[stretch] - cacti <not-affected> (Issue introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abf2a9b4bf569b52fdd93f76848933eca2ca1a00

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abf2a9b4bf569b52fdd93f76848933eca2ca1a00
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220328/f540e86b/attachment.htm>

More information about the debian-security-tracker-commits mailing list