{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_security_advisory","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"Security update for cacti, cacti-spine","title":"Title of the patch"},{"category":"description","text":"This update for cacti, cacti-spine fixes the following issues:\n\n- cacti 1.2.13:\n\n  * Query XSS vulnerabilities require vendor package update\n    (CVE-2020-11022 / CVE-2020-11023)\n  * Lack of escaping on some pages can lead to XSS exposure\n  * Update PHPMailer to 6.1.6 (CVE-2020-13625)\n  * SQL Injection vulnerability due to input validation failure when\n    editing colors (CVE-2020-14295, boo#1173090)\n  * Lack of escaping on template import can lead to XSS exposure\n\n- switch from cron to systemd timers (boo#1115436):\n  + cacti-cron.timer\n  + cacti-cron.service\n- avoid potential root escalation on systems with fs.protected_hardlinks=0\n  (boo#1154087): handle directory permissions in file section instead\n  of using chown during post installation\n- rewrote apache configuration to get rid of .htaccess files and \n  explicitely disable directory permissions per default \n  (only allow a limited, well-known set of directories)\n\n\nThis update was imported from the openSUSE:Leap:15.1:Update update project.","title":"Description of the patch"},{"category":"details","text":"openSUSE-2020-1106","title":"Patchnames"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"SUSE ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"self","summary":"URL of this CSAF notice","url":"https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_1106-1.json"},{"category":"self","summary":"URL for openSUSE-SU-2020:1106-1","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4IXKYESUUIOBHBKL32YKWOWHSJKS7RN3/"},{"category":"self","summary":"E-Mail link for openSUSE-SU-2020:1106-1","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4IXKYESUUIOBHBKL32YKWOWHSJKS7RN3/"},{"category":"self","summary":"SUSE Bug 1115436","url":"https://bugzilla.suse.com/1115436"},{"category":"self","summary":"SUSE Bug 1154087","url":"https://bugzilla.suse.com/1154087"},{"category":"self","summary":"SUSE Bug 1173090","url":"https://bugzilla.suse.com/1173090"},{"category":"self","summary":"SUSE CVE CVE-2020-11022 page","url":"https://www.suse.com/security/cve/CVE-2020-11022/"},{"category":"self","summary":"SUSE CVE CVE-2020-11023 page","url":"https://www.suse.com/security/cve/CVE-2020-11023/"},{"category":"self","summary":"SUSE CVE CVE-2020-13625 page","url":"https://www.suse.com/security/cve/CVE-2020-13625/"},{"category":"self","summary":"SUSE CVE CVE-2020-14295 page","url":"https://www.suse.com/security/cve/CVE-2020-14295/"}],"title":"Security update for cacti, cacti-spine","tracking":{"current_release_date":"2020-07-27T21:28:47Z","generator":{"date":"2020-07-27T21:28:47Z","engine":{"name":"cve-database.git:bin/generate-csaf.pl","version":"1"}},"id":"openSUSE-SU-2020:1106-1","initial_release_date":"2020-07-27T21:28:47Z","revision_history":[{"date":"2020-07-27T21:28:47Z","number":"1","summary":"Current version"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_version","name":"cacti-spine-1.2.13-bp151.4.12.1.aarch64","product":{"name":"cacti-spine-1.2.13-bp151.4.12.1.aarch64","product_id":"cacti-spine-1.2.13-bp151.4.12.1.aarch64"}}],"category":"architecture","name":"aarch64"},{"branches":[{"category":"product_version","name":"cacti-1.2.13-bp151.4.12.1.noarch","product":{"name":"cacti-1.2.13-bp151.4.12.1.noarch","product_id":"cacti-1.2.13-bp151.4.12.1.noarch"}}],"category":"architecture","name":"noarch"},{"branches":[{"category":"product_version","name":"cacti-spine-1.2.13-bp151.4.12.1.ppc64le","product":{"name":"cacti-spine-1.2.13-bp151.4.12.1.ppc64le","product_id":"cacti-spine-1.2.13-bp151.4.12.1.ppc64le"}}],"category":"architecture","name":"ppc64le"},{"branches":[{"category":"product_version","name":"cacti-spine-1.2.13-bp151.4.12.1.s390x","product":{"name":"cacti-spine-1.2.13-bp151.4.12.1.s390x","product_id":"cacti-spine-1.2.13-bp151.4.12.1.s390x"}}],"category":"architecture","name":"s390x"},{"branches":[{"category":"product_version","name":"cacti-spine-1.2.13-bp151.4.12.1.x86_64","product":{"name":"cacti-spine-1.2.13-bp151.4.12.1.x86_64","product_id":"cacti-spine-1.2.13-bp151.4.12.1.x86_64"}}],"category":"architecture","name":"x86_64"},{"branches":[{"category":"product_name","name":"SUSE Package Hub 15 SP1","product":{"name":"SUSE Package Hub 15 SP1","product_id":"SUSE Package Hub 15 SP1"}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"cacti-1.2.13-bp151.4.12.1.noarch as component of SUSE Package Hub 15 SP1","product_id":"SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch"},"product_reference":"cacti-1.2.13-bp151.4.12.1.noarch","relates_to_product_reference":"SUSE Package Hub 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"cacti-spine-1.2.13-bp151.4.12.1.aarch64 as component of SUSE Package Hub 15 SP1","product_id":"SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64"},"product_reference":"cacti-spine-1.2.13-bp151.4.12.1.aarch64","relates_to_product_reference":"SUSE Package Hub 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"cacti-spine-1.2.13-bp151.4.12.1.ppc64le as component of SUSE Package Hub 15 SP1","product_id":"SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le"},"product_reference":"cacti-spine-1.2.13-bp151.4.12.1.ppc64le","relates_to_product_reference":"SUSE Package Hub 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"cacti-spine-1.2.13-bp151.4.12.1.s390x as component of SUSE Package Hub 15 SP1","product_id":"SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x"},"product_reference":"cacti-spine-1.2.13-bp151.4.12.1.s390x","relates_to_product_reference":"SUSE Package Hub 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"cacti-spine-1.2.13-bp151.4.12.1.x86_64 as component of SUSE Package Hub 15 SP1","product_id":"SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"},"product_reference":"cacti-spine-1.2.13-bp151.4.12.1.x86_64","relates_to_product_reference":"SUSE Package Hub 15 SP1"}]},"vulnerabilities":[{"cve":"CVE-2020-11022","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2020-11022"}],"notes":[{"category":"general","text":"In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.","title":"CVE description"}],"product_status":{"recommended":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2020-11022","url":"https://www.suse.com/security/cve/CVE-2020-11022"},{"category":"external","summary":"SUSE Bug 1173090 for CVE-2020-11022","url":"https://bugzilla.suse.com/1173090"},{"category":"external","summary":"SUSE Bug 1178434 for CVE-2020-11022","url":"https://bugzilla.suse.com/1178434"},{"category":"external","summary":"SUSE Bug 1190663 for CVE-2020-11022","url":"https://bugzilla.suse.com/1190663"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":6.1,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","version":"3.1"},"products":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]}],"threats":[{"category":"impact","date":"2020-07-27T21:28:47Z","details":"moderate"}],"title":"CVE-2020-11022"},{"cve":"CVE-2020-11023","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2020-11023"}],"notes":[{"category":"general","text":"In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.","title":"CVE description"}],"product_status":{"recommended":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2020-11023","url":"https://www.suse.com/security/cve/CVE-2020-11023"},{"category":"external","summary":"SUSE Bug 1173090 for CVE-2020-11023","url":"https://bugzilla.suse.com/1173090"},{"category":"external","summary":"SUSE Bug 1178434 for CVE-2020-11023","url":"https://bugzilla.suse.com/1178434"},{"category":"external","summary":"SUSE Bug 1190660 for CVE-2020-11023","url":"https://bugzilla.suse.com/1190660"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":6.1,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","version":"3.1"},"products":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]}],"threats":[{"category":"impact","date":"2020-07-27T21:28:47Z","details":"moderate"}],"title":"CVE-2020-11023"},{"cve":"CVE-2020-13625","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2020-13625"}],"notes":[{"category":"general","text":"PHPMailer before 6.1.6 contains an output escaping bug when the name of a file attachment contains a double quote character. This can result in the file type being misinterpreted by the receiver or any mail relay processing the message.","title":"CVE description"}],"product_status":{"recommended":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2020-13625","url":"https://www.suse.com/security/cve/CVE-2020-13625"},{"category":"external","summary":"SUSE Bug 1173090 for CVE-2020-13625","url":"https://bugzilla.suse.com/1173090"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":7.5,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","version":"3.1"},"products":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]}],"threats":[{"category":"impact","date":"2020-07-27T21:28:47Z","details":"important"}],"title":"CVE-2020-13625"},{"cve":"CVE-2020-14295","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2020-14295"}],"notes":[{"category":"general","text":"A SQL injection issue in color.php in Cacti 1.2.12 allows an admin to inject SQL via the filter parameter. This can lead to remote command execution because the product accepts stacked queries.","title":"CVE description"}],"product_status":{"recommended":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2020-14295","url":"https://www.suse.com/security/cve/CVE-2020-14295"},{"category":"external","summary":"SUSE Bug 1173090 for CVE-2020-14295","url":"https://bugzilla.suse.com/1173090"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":7.2,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","version":"3.1"},"products":["SUSE Package Hub 15 SP1:cacti-1.2.13-bp151.4.12.1.noarch","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.aarch64","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.ppc64le","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.s390x","SUSE Package Hub 15 SP1:cacti-spine-1.2.13-bp151.4.12.1.x86_64"]}],"threats":[{"category":"impact","date":"2020-07-27T21:28:47Z","details":"important"}],"title":"CVE-2020-14295"}]}