[Git][security-tracker-team/security-tracker][master] Triaging CVE-2024-36468/zabbix
Tobias Frost (@tobi)
tobi at debian.org
Mon Dec 2 17:17:23 GMT 2024
Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a07558bd by Tobias Frost at 2024-12-02T18:17:10+01:00
Triaging CVE-2024-36468/zabbix
ZBX-25621 -> DEV-3877
Fixed upstream in 7.0.3rc1 (first Debian upload 1:7.0.4-1)
Merge Commit: https://github.com/zabbix/zabbix/commit/c0dd17ac03c6cc5c7d830d1eee7e5b84243ea673
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -576,8 +576,9 @@ CVE-2024-41125 (Contiki-NG is an open-source, cross-platform operating system fo
CVE-2024-37816 (Quectel EC25-EUX EC25EUXGAR08A05M1G was discovered to contain a stack ...)
NOT-FOR-US: Quectel
CVE-2024-36468 (The reported vulnerability is a stack buffer overflow in the zbx_snmp_ ...)
- - zabbix <unfixed> (bug #1088689)
+ - zabbix 1:7.0.3+dfsg-1 (bug #1088689)
NOTE: https://support.zabbix.com/browse/ZBX-25621
+ NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/c0dd17ac03c6cc5c7d830d1eee7e5b84243ea673 (7.0.3rc1)
CVE-2024-36464 (When exporting media types, the password is exported in the YAML in pl ...)
- zabbix <unfixed> (bug #1088689)
NOTE: https://support.zabbix.com/browse/ZBX-25630
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a07558bda58f861f6cef60725805b9b1a568c3b1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a07558bda58f861f6cef60725805b9b1a568c3b1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241202/785bff70/attachment.htm>
More information about the debian-security-tracker-commits
mailing list