This update for cacti, cacti-spine fixes the following issues:
cacti-spine was updated to 1.2.20:
- Add support for newer versions of MySQL/MariaDB
- When checking for uptime of device, don't assume a non-response
is always fatal
- Fix description and command trunctation issues
- Improve spine performance when only one snmp agent port is in
use
cacti-spine 1.2.19:
- Fix 1ssues with polling loop may skip some datasources
- Fix ping no longer works due to hostname changes
- Fix RRD steps are not always calculated correctly
- Fix unable to build when DES no longer supported
- Fix IPv6 devices are not properly parsed
- Reduce a number of compiler warnings
- Fix compiler warnings due to lack of return in thread_mutex_trylock
- Fix Spine will not look at non-timetics uptime when sysUpTimeInstance overflows
- Improve performance of Cacti poller on heavily loaded systems
cacti-spine 1.2.20:
- Add support for newer versions of MySQL/MariaDB
- When checking for uptime of device, don't assume a non-response
is always fatal
- Fix description and command trunctation issues
- Improve spine performance when only one snmp agent port is in
use
cacti was updated to 1.2.20:
- Security fix for CVE-2022-0730, boo#1196692
Under certain ldap conditions, Cacti authentication can be
bypassed with certain credential types.
- Security fix: Device, Graph, Graph Template,
and Graph Items may be vulnerable to XSS issues
- Security fix: Lockout policies are not properly applied to LDAP
and Domain Users
- Security fix: When using 'remember me' option, incorrect realm
may be selected
- Security fix: User and Group maintenance are vulnerable to SQL attacks
- Security fix: Color Templates are vulnerable to XSS attack
- Features:
- When creating a Data Source Profile, allow additional choices for Heartbeat
- Change select all options to use Font Awesome icons
- Improve spine performance by storing...