[Pkg-cacti-maint] Bug#867532: cacti: CVE-2017-10970: XSS vulnerability via link.php
Paul Gevers
elbrus at debian.org
Fri Jul 7 07:36:13 UTC 2017
Control: notfound -1 0.8.8h+ds1-10
Control: found -1 1.1.3+ds1-1
Control: severity -1 serious
On 07-07-17 06:48, Salvatore Bonaccorso wrote:
> Unless I'm completely mistaken that should be the commit which
> introduced the issue. As such stretch and jessie should not be
> affected.
I believe your conclusion is correct. Set affected versions accordingly.
Rather busy, but I should be able to fix this in unstable. Let's prevent
this issue migrating to testing.
Paul
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-cacti-maint/attachments/20170707/69a59d4a/attachment.sig>
More information about the Pkg-cacti-maint
mailing list