SUSE-SU-2022:4244-1

Details

This update for ganglia-web fixes the following issues:

updated to 3.7.5 which fixes (bsc#1179835)
CVE-2019-20378: Fixed a possible XSS via ce and cs parameters in header.php (bsc#1160761).

Affected Packages

ganglia-web

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP1-LTSSSUSE Linux Enterprise High Performance Computing 15-ESPOSSUSE Linux Enterprise High Performance Computing 15-LTSS

Fixed in:

3.7.5-150000.4.3.1

References

REPORT

https://bugzilla.suse.com/1160761

REPORT

https://bugzilla.suse.com/1179835

WEB

https://www.suse.com/security/cve/CVE-2019-20378

ADVISORY

https://www.suse.com/support/update/announcement/2022/suse-su-20224244-1/