[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-42326 in bookworm

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Dec 6 22:02:54 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
eaf2da3d by Salvatore Bonaccorso at 2024-12-06T23:02:16+01:00
Update status for CVE-2024-42326 in bookworm

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2015,10 +2015,11 @@ CVE-2024-42327 (A non-admin user account on the Zabbix frontend with the default
 	NOTE: Userroles introduced with version 6.0.0alpha1, commit https://github.com/zabbix/zabbix/commit/e5f4a103352a2e182c177236079bbe2a22907e45
 CVE-2024-42326 (There was discovered a use after free bug in browser.c in the es_brows ...)
 	- zabbix 1:7.0.5+dfsg-1 (bug #1088689)
+	[bookworm] - zabbix <not-affected> (Vulnerable code introduced later)
 	[bullseye] - zabbix <not-affected> (Vulnerable code introduced later)
 	NOTE: https://support.zabbix.com/browse/ZBX-25622
 	NOTE: Fixed by https://github.com/zabbix/zabbix/commit/0b01b889fc1d47002e1cf9fa50d52a5cca5f1a97 (7.0.4rc1)
-	NOTE: webdriver (browser.c) introduced with version 7.0.0rc1 commit https://github.com/zabbix/zabbix/commit/4d22c15fe4499602e0da5399e3dd6dc9da03277b
+	NOTE: webdriver (browser.c) introduced with commit https://github.com/zabbix/zabbix/commit/4d22c15fe4499602e0da5399e3dd6dc9da03277b (7.0.0rc1)
 CVE-2024-41126 (Contiki-NG is an open-source, cross-platform operating system for IoT  ...)
 	NOT-FOR-US: Contiki-NG
 CVE-2024-41125 (Contiki-NG is an open-source, cross-platform operating system for IoT  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eaf2da3d6a3a1c162252b3738f522ee44b3dc738

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eaf2da3d6a3a1c162252b3738f522ee44b3dc738
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241206/ecde7689/attachment.htm>

More information about the debian-security-tracker-commits mailing list