Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:4244-1

Опубликовано: 28 нояб. 2022
Источник: suse-cvrf

Описание

Security update for ganglia-web

This update for ganglia-web fixes the following issues:

  • updated to 3.7.5 which fixes (bsc#1179835)
  • CVE-2019-20378: Fixed a possible XSS via ce and cs parameters in header.php (bsc#1160761).

Список пакетов

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
ganglia-web-3.7.5-150000.4.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
ganglia-web-3.7.5-150000.4.3.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
ganglia-web-3.7.5-150000.4.3.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
ganglia-web-3.7.5-150000.4.3.1

Ссылки

Описание

ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter.

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:ganglia-web-3.7.5-150000.4.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:ganglia-web-3.7.5-150000.4.3.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS:ganglia-web-3.7.5-150000.4.3.1
SUSE Linux Enterprise High Performance Computing 15-LTSS:ganglia-web-3.7.5-150000.4.3.1
Ссылки