[SECURITY] [DLA 1757-1] cacti security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Package : cacti
Version : 0.8.8b+dfsg-8+deb8u7
CVE ID : CVE-2019-11025
Debian Bug : #926700
It was discovered that there were a number of cross-site scripting
vulnerabilities (XSS) in cacti, a web-based front-end for the RRDTool
monitoring tool.
For Debian 8 "Jessie", this issue has been fixed in cacti version
0.8.8b+dfsg-8+deb8u7.
We recommend that you upgrade your cacti packages.
Regards,
- --
,''`.
: :' : Chris Lamb
`. `'` lamby@debian.org / chris-lamb.co.uk
`-
-----BEGIN PGP SIGNATURE-----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=p3T7
-----END PGP SIGNATURE-----
Reply to: