[Git][security-tracker-team/security-tracker][master] Revert "CVE-2024-27082/cacti"
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Sep 13 19:29:09 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2ac99b04 by Salvatore Bonaccorso at 2024-09-13T20:28:00+02:00
Revert "CVE-2024-27082/cacti"
This reverts commit c17579f1a64bfa00f42d8bc33b0ba37c4f56c57e.
While this holds for bullseye version, for bookworm version the commit
as referenced in the nodes as [3/6] is applicable in bookworm to use
DOMPurify.sanitize().
For this reason switch it back to no-dsa.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -34051,7 +34051,7 @@ CVE-2024-28276 (Sourcecodester School Task Manager 1.0 is vulnerable to Cross Si
NOT-FOR-US: Sourcecodester School Task Manager
CVE-2024-27082 (Cacti provides an operational monitoring and fault management framewor ...)
- cacti 1.2.27+ds1-1
- [bookworm] - cacti <not-affected> (Vulnerable code not present)
+ [bookworm] - cacti <no-dsa> (Minor issue)
[bullseye] - cacti <not-affected> (Vulnerable code not present)
NOTE: GitHub GHSA: https://github.com/Cacti/cacti/security/advisories/GHSA-j868-7vjp-rp9h
NOTE: bug: https://github.com/Cacti/cacti/issues/5798
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ac99b04e306c41c27a93ac2366dfab137ff14e0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ac99b04e306c41c27a93ac2366dfab137ff14e0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240913/38f1f3d2/attachment.htm>
More information about the debian-security-tracker-commits
mailing list