[Git][security-tracker-team/security-tracker][master] Triaging CVE-2024-36468/zabbix

Tobias Frost (@tobi) tobi at debian.org
Mon Dec 2 17:17:23 GMT 2024



Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a07558bd by Tobias Frost at 2024-12-02T18:17:10+01:00
Triaging CVE-2024-36468/zabbix

ZBX-25621 -> DEV-3877

Fixed upstream in 7.0.3rc1 (first Debian upload 1:7.0.4-1)

Merge Commit: https://github.com/zabbix/zabbix/commit/c0dd17ac03c6cc5c7d830d1eee7e5b84243ea673

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -576,8 +576,9 @@ CVE-2024-41125 (Contiki-NG is an open-source, cross-platform operating system fo
 CVE-2024-37816 (Quectel EC25-EUX EC25EUXGAR08A05M1G was discovered to contain a stack  ...)
 	NOT-FOR-US: Quectel
 CVE-2024-36468 (The reported vulnerability is a stack buffer overflow in the zbx_snmp_ ...)
-	- zabbix <unfixed> (bug #1088689)
+	- zabbix 1:7.0.3+dfsg-1 (bug #1088689)
 	NOTE: https://support.zabbix.com/browse/ZBX-25621
+	NOTE: Fixed by (merge commit): https://github.com/zabbix/zabbix/commit/c0dd17ac03c6cc5c7d830d1eee7e5b84243ea673 (7.0.3rc1)
 CVE-2024-36464 (When exporting media types, the password is exported in the YAML in pl ...)
 	- zabbix <unfixed> (bug #1088689)
 	NOTE: https://support.zabbix.com/browse/ZBX-25630



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a07558bda58f861f6cef60725805b9b1a568c3b1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a07558bda58f861f6cef60725805b9b1a568c3b1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241202/785bff70/attachment.htm>


More information about the debian-security-tracker-commits mailing list