Updates to cacti for CVE-2023-39361 (CVSS 9.8)?

chuegen at pentics.com chuegen at pentics.com
Tue Sep 12 16:36:47 UTC 2023

Hi there, 

The Cacti project provided an announcement of a CVSS 9.8 SQL injection
bug against Cacti (fixed in 1.2.25).  Is this being worked, and how long
should I expect before a package becomes available in the Ubuntu 22.04
security stream?  For now, I have disabled the functionality in question
while I await a package update (and I'd like to avoid having to go with
a local version of the updated package if it will be relatively soon). 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-devel-discuss/attachments/20230912/bb447ffa/attachment.html>

More information about the Ubuntu-devel-discuss mailing list