[Pkg-cacti-maint] Bug#947374: cacti: CVE-2019-17357: does not seem to affect stretch
Hugo Lefeuvre
hle at debian.org
Sun Dec 29 18:00:18 GMT 2019
Hi,
after taking a look at the source code, this vulnerability does not seem to
affect cacti 0.8.8h+ds1-10 (stretch).
rationale: template_id is sanitized at line 1048:
input_validate_input_number(get_request_var_request("template_id"));
This check was replaced over time and gradually disappeared, which explains
the security issue in recent versions.
Chris: you worked on cacti in jessie and triaged it not-affected. Jessie
has a similar version, does this match your findings?
Just to make sure, I contacted upstream to get reproduction instructions
before I triage this not-affected in stretch in the tracker.
cheers,
Hugo
--
Hugo Lefeuvre (hle) | www.owl.eu.com
RSA4096_ 360B 03B3 BF27 4F4D 7A3F D5E8 14AA 1EB8 A247 3DFD
ed25519_ 37B2 6D38 0B25 B8A2 6B9F 3A65 A36F 5357 5F2D DC4C
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 659 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-cacti-maint/attachments/20191229/24669a51/attachment.sig>
More information about the Pkg-cacti-maint
mailing list