[Git][security-tracker-team/security-tracker][master] Triaging CVE-2024-22117/zabbix
Tobias Frost (@tobi)
tobi at debian.org
Sun Dec 1 17:28:48 GMT 2024
Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1f886d71 by Tobias Frost at 2024-12-01T18:27:41+01:00
Triaging CVE-2024-22117/zabbix
Upstream ticket ZBX-25610 says this is a duplicate of DEV-3747.
The patches are this DEV-ticket.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -718,7 +718,12 @@ CVE-2024-32965 (Lobe Chat is an open-source, AI chat framework. Versions of lobe
NOT-FOR-US: Lobe Chat
CVE-2024-22117 (When a URL is added to the map element, it is recorded in the database ...)
- zabbix 1:7.0.5+dfsg-1
+ [bullseye] - zabbix 1:5.0.44+dfsg-1+deb11u1
NOTE: https://support.zabbix.com/browse/ZBX-25610
+ NOTE: fixed for 6.0.x in 6.0.34rc1
+ NOTE: fixed by: https://github.com/zabbix/zabbix/commit/73d694022cd8e3468d1fdb1dc672e8d0eb9a2fc3 (6.0.x)
+ NOTE: fixed for 5.0.x in 6.0.44rc1
+ NOTE: fixed by: https://github.com/zabbix/zabbix/commit/c9810cd2dfe65922ec5e84f06c0b44d38262fbe5 (5.0.x)
CVE-2024-11828 (A denial of service (DoS) condition was discovered in GitLab CE/EE aff ...)
- gitlab <unfixed>
CVE-2024-11743 (A vulnerability, which was classified as problematic, was found in Sou ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f886d71b7336224104f996fb291ca182333c02d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f886d71b7336224104f996fb291ca182333c02d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241201/61cb7206/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list