Security update for cacti (moderate)

openSUSE Security Update: Security update for cacti Announcement ID: openSUSE-SU-2026:0189-1 Rating: moderate References: Cross-References: CVE-2024-27355 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available. Description: This update for cacti...

Security update for cacti, cacti-spine (important)

openSUSE Security Update: Security update for cacti, cacti-spine Announcement ID: openSUSE-SU-2024:0276-1 Rating: important References: 1224229 1224230 1224231 1224235 1224236 1224237 1224238 1224239 1224240 1224241 Cross-References: CVE-2024-25641 CVE-2024-27082 CVE-2024-29894 CVE-2024-31443...

OPENSUSE-SU-2024:0031-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: cacti-spine 1.2.26: Fix: Errors when uptime OID is not present Fix: MySQL reconnect option is depreciated Fix: Spine does not check a host with no poller items Fix: Poller may report the wrong number of devices polled Feature: Allow...

DSA-5550-1 cacti - security update

Bulletin has no description...

[SECURITY] Fedora 39 Update: cacti-1.2.25-1.fc39

Cacti is a complete frontend to RRDTool. It stores all of the necessary information to create graphs and populate them with data in a MySQL database. The frontend is completely PHP driven...

OPENSUSE-SU-2023:0275-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: cacti-spine 1.2.25: Spine should see if script to be executed is executable Enhance number recognition When polling devices, sort by larger number of items first Log format may be corrupted when timeout occurs Compile warning appears...

OPENSUSE-SU-2023:0025-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: cacti-spine 1.2.23: Fix unexpected reindexing when using uptime as the reindex method Spine should prevent the script server from connecting to remote when offline Improve Script Server Timeout Logging Add SQLNOCACHE to Spine Queries...

Security update for cacti, cacti-spine (important)

openSUSE Security Update: Security update for cacti, cacti-spine Announcement ID: openSUSE-SU-2023:0025-1 Rating: important References: 1206185 Cross-References: CVE-2022-46169 CVSS scores: CVE-2022-46169 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-46169 SUSE: 9.8...

OPENSUSE-SU-2021:1208-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: cacti-spine 1.2.18: Fix missing time parameter on FROMUNIXTIME function cacti 1.2.18: CVE-2020-14424: Lack of escaping on template import can lead to XSS exposure under 'midwinter' theme boo1188188 Real time graphs can expose XSS issu...

OPENSUSE-SU-2021:0755-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: cacti-spine was updated to 1.2.17: Avoid triggering DDos detection in firewalls on large systems Use mysql reconnect option properly Fix possible creashes in various operations Fix remote data collectors pushing too much data to main...

OPENSUSE-SU-2020:1106-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: - cacti 1.2.13: Query XSS vulnerabilities require vendor package update CVE-2020-11022 / CVE-2020-11023 Lack of escaping on some pages can lead to XSS exposure Update PHPMailer to 6.1.6 CVE-2020-13625 SQL Injection vulnerability due t...

OPENSUSE-SU-2020:0654-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: cacti-spine and cacti were updated to 1.2.12: cacti fixes: CVE-2020-7106: Lack of escaping of color items can lead to XSS exposure boo1163749 Fix multiple graphing bugs and web UI issues Fix multiple warnings, PHP Exceptions and error...

OPENSUSE-SU-2020:0565-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine to version 1.2.11 fixes the following issues: This update is fixing multiple vulnerabilities and adding bug fixes. For more details consult the changes file. This update was imported from the openSUSE:Leap:15.1:Update update project...

OPENSUSE-SU-2020:0558-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine to version 1.2.11 fixes the following issues: This update is fixing multiple vulnerabilities and adding bug fixes. For more details consult the changes file...

OPENSUSE-SU-2020:0284-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: cacti-spine was updated to version 1.2.9. Security issues fixed: - CVE-2009-4112: Fixed a privilege escalation bsc1122535. - CVE-2018-20723: Fixed a cross-site scripting XSS vulnerability bsc1122245. - CVE-2018-20724: Fixed a cross-si...

OPENSUSE-SU-2020:0272-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: cacti-spine was updated to version 1.2.9. Security issues fixed: - CVE-2009-4112: Fixed a privilege escalation bsc1122535. - CVE-2018-20723: Fixed a cross-site scripting XSS vulnerability bsc1122245. - CVE-2018-20724: Fixed a cross-si...

Debian DLA-2069-1 : cacti security update

It was discovered that there were a number of cross-site scripting vulnerabilities in cacti, a web interface for monitoring systems. For Debian 8 'Jessie', this issue has been fixed in cacti version 0.8.8b+dfsg-8+deb8u9. We recommend that you upgrade your cacti packages. NOTE: Tenable Network...

Fedora 25 : cacti (2017-8b0737b093)

Update to 1.0.4 Release notes : http://www.cacti.net/releasenotes100.php http://www.cacti.net/releasenotes101.php http://www.cacti.net/releasenotes102.php http://www.cacti.net/releasenotes103.php http://www.cacti.net/releasenotes104.php Note that Tenable Network Security has extracted the...

openSUSE Security Update : cacti (openSUSE-2015-221)

cacti was updated to version 0.8.8c boo920399 This update fixes four vulnerabilities and adds some compatible features. - Security fixes not previously patched : - CVE-2014-2326 - XSS issue via CDEF editing - CVE-2014-2327 - Cross-site request forgery CSRF vulnerability - CVE-2014-2328 - Remote...

openSUSE Security Update : cacti (openSUSE-SU-2013:1377-1)

cacti was updated to version 0.8.8b to fix security issues and bugs. - Fixes CVE-2013-1434 CVE-2013-1435 - security: SQL injection and shell escaping issues - bug: Fixed issue with custom data source information being lost when saved from edit - bug: Repopulate the poller cache on new installatio...