Summary: | <net-analyzer/cacti-1.2.12: Lack of escaping of color items can lead to XSS exposure (CVE-2020-7106) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Jeroen Roovers (RETIRED) <jer> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | netmon |
Priority: | Normal | Keywords: | CC-ARCHES, STABLEREQ |
Version: | unspecified | Flags: | nattka:
sanity-check+
|
Hardware: | All | ||
OS: | Linux | ||
See Also: | https://bugs.gentoo.org/show_bug.cgi?id=708938 | ||
Whiteboard: | B4 [noglsa] | ||
Package list: |
=net-analyzer/cacti-1.2.12
=net-analyzer/cacti-spine-1.2.12
|
Runtime testing required: | --- |
Bug Depends on: | |||
Bug Blocks: | 724348 |
Description
Jeroen Roovers (RETIRED)
2020-05-04 09:22:11 UTC
amd64 stable x86 stable sparc stable Dropped HPPA keywording to ~hppa. noglsa because XSS. @maintainer(s), please cleanup when ready, thanks! (In reply to Sam James (sec padawan) from comment #5) > noglsa because XSS. > > @maintainer(s), please cleanup when ready, thanks! done |