UTM Version 9.352-6 and 9.318-5 released (Do not install!!)

Hi all:

regarding the Daily Executive Report - you are talking about the Daily Executive Report which is send by Email as HTML, right?

The bad news is, at the least the patches for regarding the XSS should not be the source of this issue, since they are only targeting on POST requests in WebAdmin.

The corresponding images in the Executive Report are directly integrated in the Email (by cid) and are therefore fully unrelated to the patches we released in this update.

I had a couple of test runs on the same version and I cannot confirm this behavior, though I had been using a fresh install instead of an updated machine.

Cheers,
Sascha

Hi all:

regarding the Daily Executive Report - you are talking about the Daily Executive Report which is send by Email as HTML, right?

The bad news is, at the least the patches for regarding the XSS should not be the source of this issue, since they are only targeting on POST requests in WebAdmin.

The corresponding images in the Executive Report are directly integrated in the Email (by cid) and are therefore fully unrelated to the patches we released in this update.

I had a couple of test runs on the same version and I cannot confirm this behavior, though I had been using a fresh install instead of an updated machine.

Cheers,
Sascha

also see no images in the daily pdf-report any more...

> The corresponding images in the Executive Report are directly integrated in the Email (by cid) and are
> therefore fully unrelated to the patches we released in this update.

9.351-3 HTML-Source in the Executive Report looks/looked like:
img src="cid:cpuusage_daily_01234567890abcdefgh...."
img src="cid:memswap_daily_01234567890abcdefg...."

9.352-6 HTML-Source in the Executive Report looks like:
img src="/var/rrd-nodataimages/cpuusage_nodata.png
img src="/var/rrd-nodataimages/memswap_nodata.png