[Git][security-tracker-team/security-tracker][master] Update information on CVE-2024-36463
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Dec 1 20:03:58 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3e234554 by Salvatore Bonaccorso at 2024-12-01T21:02:41+01:00
Update information on CVE-2024-36463
Reference the merge commits (as the fixes are spread over various amount
of single commits in the upper branches) and add tag information for
those.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -714,10 +714,10 @@ CVE-2024-36463 (The implementation of atob in "Zabbix JS" allows to create a str
- zabbix 1:7.0.3+dfsg-1
[bullseye] - zabbix 1:5.0.44+dfsg-1+deb11u1
NOTE: https://support.zabbix.com/browse/ZBX-25611
- NOTE: fixed for 6.0.x in 6.0.33rc1
- NOTE: fixed by: https://github.com/zabbix/zabbix/commit/a4117b60b61285cb1bb5000ba77127207758a675 (6.0.x)
- NOTE: fixed for 5.0.x in 5.0.43rc1
- NOTE: fixed by: https://github.com/zabbix/zabbix/commit/df7736664caf49b4a58d75b4410cff587be615f0 (5.0.x)
+ NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/223a21567b659366396781429a8d87009600784a (7.0.3rc1)
+ NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/b88db679a85bcc22d2f270bf0bf736f4649b445c (7.0.3rc1)
+ NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/a4117b60b61285cb1bb5000ba77127207758a675 (6.0.33rc1)
+ NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/df7736664caf49b4a58d75b4410cff587be615f0 (5.0.43rc1)
CVE-2024-32965 (Lobe Chat is an open-source, AI chat framework. Versions of lobe-chat ...)
NOT-FOR-US: Lobe Chat
CVE-2024-22117 (When a URL is added to the map element, it is recorded in the database ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e23455476869c8285becbae7a38cb5d766db232
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e23455476869c8285becbae7a38cb5d766db232
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241201/5f5cc6fd/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list