Overview
Request 358753 accepted
cacti was updated to fix the following vulnerabilities:
* CVE-2015-8369: SQL injection in graph.php (boo#958863)
* CVE-2015-8604: SQL injection in graphs_new.php (boo#960678)
* CVE-2015-8377: SQL injection vulnerability in the host_new_graphs_save function in graphs_new.php (boo#958977)
* CVE-2016-2313: Authentication using web authentication as a user not in the cacti database allows complete access (boo#965930)
cacti-spine was updated to match the cacti version, fixing a number of upstream bugs.
- Created by AndreasStieger
- In state accepted
- Open review for server:monitoring / cacti
- Open review for server:monitoring / cacti-spine
Request History
AndreasStieger created request
cacti was updated to fix the following vulnerabilities:
* CVE-2015-8369: SQL injection in graph.php (boo#958863)
* CVE-2015-8604: SQL injection in graphs_new.php (boo#960678)
* CVE-2015-8377: SQL injection vulnerability in the host_new_graphs_save function in graphs_new.php (boo#958977)
* CVE-2016-2313: Authentication using web authentication as a user not in the cacti database allows complete access (boo#965930)
cacti-spine was updated to match the cacti version, fixing a number of upstream bugs.
maintbot added cacti as a reviewer
Submission by someone who is not maintainer in the devel project. Please review
maintbot added cacti-spine as a reviewer
Submission by someone who is not maintainer in the devel project. Please review
maintbot accepted review
accepted
AndreasStieger accepted request
starting incident