Paul Gevers pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c874b9d4 by Paul Gevers at 2022-12-08T09:07:45+01:00
CVE-2020-14424 (cacti) mark it as not affecting bullseye and buster
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -188439,8 +188439,8 @@ CVE-2020-14425 (Foxit Reader before 10.0 allows
Remote Command Execution via the
NOT-FOR-US: Foxit Reader
CVE-2020-14424 (Cacti before 1.2.18 allows remote attackers to trigger XSS via
templat ...)
- cacti 1.2.19+ds1-1
- [bullseye] - cacti <no-dsa> (Minor issue)
- [buster] - cacti <no-dsa> (Minor issue)
+ [bullseye] - cacti <not-affected> (Vulnerable code not present)
+ [buster] - cacti <not-affected> (Vulnerable code not present)
[stretch] - cacti <not-affected> (Vulnerable code not present)
NOTE: https://github.com/Cacti/cacti/pull/4261
NOTE:
https://github.com/Cacti/cacti/commit/d12800ab479ad95a091bc577f28fd99ec95eb64c
(release/1.2.18)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c874b9d42e53e21fc280f609579620738786173c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c874b9d42e53e21fc280f609579620738786173c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
