[Git][security-tracker-team/security-tracker][master] 2 commits: Update tag information for CVE-2024-42330
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Dec 1 20:22:41 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6aa65c49 by Salvatore Bonaccorso at 2024-12-01T21:21:48+01:00
Update tag information for CVE-2024-42330
- - - - -
340e934d by Salvatore Bonaccorso at 2024-12-01T21:21:50+01:00
Add upstream tag information for CVE-2024-42332
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -473,16 +473,16 @@ CVE-2024-42333 (The researcher is showing that it is possible to leak a small am
CVE-2024-42332 (The researcher is showing that due to the way the SNMP trap log is par ...)
- zabbix 1:7.0.5+dfsg-1 (bug #1088689)
NOTE: https://support.zabbix.com/browse/ZBX-25628
- NOTE: fixed in 6.0.35rc1 by https://github.com/zabbix/zabbix/commit/c539a227623343187d9907186bce7c9c3bc57a52 (6.0.x)
- NOTE: fixed in 7.0.5rc1 by https://github.com/zabbix/zabbix/commit/e2982fbe05fe0a232c3fd71f2a3426a0bf400f77 (7.0.x)
+ NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/e2982fbe05fe0a232c3fd71f2a3426a0bf400f77 (7.0.5rc1)
+ NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/c539a227623343187d9907186bce7c9c3bc57a52 (6.0.35rc1)
CVE-2024-42331 (In the src/libs/zbxembed/browser.c file, the es_browser_ctor method re ...)
- zabbix <unfixed> (bug #1088689)
NOTE: https://support.zabbix.com/browse/ZBX-25627
CVE-2024-42330 (The HttpRequest object allows to get the HTTP headers from the server' ...)
- zabbix 1:7.0.5+dfsg-1 (bug #1088689)
NOTE: https://support.zabbix.com/browse/ZBX-25626
- NOTE: fixed in 6.0.34rc1 by https://github.com/zabbix/zabbix/commit/6dfc7a30e8e3ecd984cb64da6430f4c1fc61ec2d (6.0.x)
- NOTE: fixed in 7.0.4rc1 by https://github.com/zabbix/zabbix/commit/e82c5941242edc9f4a96e101caaf27e106f73f47 (7.0.x)
+ NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/e82c5941242edc9f4a96e101caaf27e106f73f47 (7.0.4rc1)
+ NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/6dfc7a30e8e3ecd984cb64da6430f4c1fc61ec2d (6.0.34rc1)
CVE-2024-42329 (The webdriver for the Browser object expects an error object to be ini ...)
- zabbix <unfixed> (bug #1088689)
NOTE: https://support.zabbix.com/browse/ZBX-25625
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/45e1dba69db75e8c9f8bd270dcb39e0973e876d0...340e934d26ba1242b095935788b07c123eb5c6af
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/45e1dba69db75e8c9f8bd270dcb39e0973e876d0...340e934d26ba1242b095935788b07c123eb5c6af
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241201/95486849/attachment.htm>
More information about the debian-security-tracker-commits
mailing list