Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
79e1fa5a by Sylvain Beucler at 2024-02-22T18:26:28+01:00
CVE-2023-39360/cacti: precise note again
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -30371,7 +30371,7 @@ CVE-2023-39360 (Cacti is an open source operational
monitoring and fault managem
NOTE:
https://github.com/Cacti/cacti/security/advisories/GHSA-gx8c-xvjh-9qh4
NOTE: Initial fix:
https://github.com/cacti/cacti/commit/9696bbd8060c7332b11b709f4dd17e6c3776bba2
(release/1.2.25)
NOTE: Final fix:
https://github.com/cacti/cacti/commit/bc6dc996745ef0dee3427178c8d87a6402f3fefa
(release/1.2.25)
- NOTE: Attack is usually blocked by browser CORS/CSP policies before
https://github.com/Cacti/cacti/commit/137340264ac550d060ef17c4d0794fa4abae1c26
(release/1.2.23)
+ NOTE: PoC doesn't seem to trigger without
https://github.com/Cacti/cacti/commit/137340264ac550d060ef17c4d0794fa4abae1c26
(release/1.2.23)
CVE-2023-39359 (Cacti is an open source operational monitoring and fault
management fr ...)
{DSA-5550-1}
- cacti 1.2.25+ds1-1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79e1fa5a8ad748d48aa852d78507f6456b99934e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79e1fa5a8ad748d48aa852d78507f6456b99934e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
