Paul Gevers pushed to branch master at Debian Security Tracker / security-tracker
Commits: 4a86e02b by Paul Gevers at 2018-04-16T20:02:10+02:00 cacti: note that CVE-2018-10059 does not affect stable and older - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -151,7 +151,11 @@ CVE-2018-10060 (Cacti before 1.1.37 has XSS because it does not properly reject NOTE: https://github.com/Cacti/cacti/issues/1457 CVE-2018-10059 (Cacti before 1.1.37 has XSS because the get_current_page function in ...) - cacti 1.1.37+ds1-1 + [stretch] - cacti <not-affected> (Issue introduced later) + [jessie] - cacti <not-affected> (Issue introduced later) + [wheezy] - cacti <not-affected> (Issue introduced later) NOTE: https://github.com/Cacti/cacti/issues/1457 + NOTE: get_current_page was added in the 1.x series CVE-2018-10058 RESERVED CVE-2018-10057 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4a86e02b1e90a55a449e98918f4794ba33ebbdbf --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4a86e02b1e90a55a449e98918f4794ba33ebbdbf You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits