Information on source package icingaweb2

Available versions

ReleaseVersion
stretch2.4.1-1
stretch (security)2.4.1-1+deb9u1
buster2.6.2-3+deb10u1
bullseye2.8.2-2
sid2.8.2-2

Open issues

BugstretchbusterbullseyesidDescription
CVE-2018-18250vulnerable (no DSA)fixedfixedfixedIcinga Web 2 before 2.6.2 allows parameters that break navigation dash ...
CVE-2018-18249vulnerable (no DSA)fixedfixedfixedIcinga Web 2 before 2.6.2 allows injection of PHP ini-file directives ...
CVE-2018-18248vulnerable (no DSA)fixedfixedfixedIcinga Web 2 has XSS via the /icingaweb2/monitoring/list/services dir ...
CVE-2018-18247vulnerable (no DSA)fixedfixedfixedIcinga Web 2 before 2.6.2 has XSS via the /icingaweb2/navigation/add i ...
CVE-2018-18246vulnerable (no DSA)fixedfixedfixedIcinga Web 2 before 2.6.2 has CSRF via /icingaweb2/config/moduledisabl ...

Resolved issues

BugDescription
CVE-2020-24368Icinga Icinga Web2 2.0.0 through 2.6.4, 2.7.4 and 2.8.2 has a Director ...

Security announcements

DSA / DLADescription
DLA-2343-1icingaweb2 - security update
DSA-4747-1icingaweb2 - security update

Search for package or bug name: Reporting problems