Overview

Request 358753 accepted

cacti was updated to fix the following vulnerabilities:

* CVE-2015-8369: SQL injection in graph.php (boo#958863)
* CVE-2015-8604: SQL injection in graphs_new.php (boo#960678)
* CVE-2015-8377: SQL injection vulnerability in the host_new_graphs_save function in graphs_new.php (boo#958977)
* CVE-2016-2313: Authentication using web authentication as a user not in the cacti database allows complete access (boo#965930)

cacti-spine was updated to match the cacti version, fixing a number of upstream bugs.

Request History
Andreas Stieger's avatar

AndreasStieger created request

cacti was updated to fix the following vulnerabilities:

* CVE-2015-8369: SQL injection in graph.php (boo#958863)
* CVE-2015-8604: SQL injection in graphs_new.php (boo#960678)
* CVE-2015-8377: SQL injection vulnerability in the host_new_graphs_save function in graphs_new.php (boo#958977)
* CVE-2016-2313: Authentication using web authentication as a user not in the cacti database allows complete access (boo#965930)

cacti-spine was updated to match the cacti version, fixing a number of upstream bugs.


Maintenance Bot's avatar

maintbot added cacti as a reviewer

Submission by someone who is not maintainer in the devel project. Please review


Maintenance Bot's avatar

maintbot added cacti-spine as a reviewer

Submission by someone who is not maintainer in the devel project. Please review


Maintenance Bot's avatar

maintbot accepted review

accepted


Andreas Stieger's avatar

AndreasStieger accepted request

starting incident

openSUSE Build Service is sponsored by