[Git][security-tracker-team/security-tracker][master] CVE-2024-22116/zabbix locate patches

Tobias Frost (@tobi) tobi at debian.org
Mon Sep 16 21:11:22 BST 2024 


Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker


Commits:
97fe7f45 by Tobias Frost at 2024-09-16T22:10:58+02:00
CVE-2024-22116/zabbix locate patches

determined by upstream ticket ZBX-25016, matched via commit message to dev-ticket DEV-3744, commitid found via git-log --grep DEV-3744.

(Seems to be introduced with version, 6.4, but needs to be re-verified.)

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8325,6 +8325,12 @@ CVE-2024-22121 (A non-admin user can change or remove important features within
 CVE-2024-22116 (An administrator with restricted permissions can exploit the script ex ...)
 	- zabbix 1:7.0.0+dfsg-1 (bug #1078553)
 	NOTE: https://support.zabbix.com/browse/ZBX-25016
+	NOTE: https://github.com/zabbix/zabbix/commit/afb3ab931d59af61e4f974634b85bcbed5a042b2 (7.0.x)
+	NOTE: https://github.com/zabbix/zabbix/commit/679e18f172fc1f9a78b19789fbbc52246871ff19 (7.0.x)
+	NOTE: https://github.com/zabbix/zabbix/commit/e6acaef1df1db44aaa9c1a0e1953a4da21425636 (7.0.x)
+	NOTE: https://github.com/zabbix/zabbix/commit/182e1a9d96dcd82de337b31dc1cbbd6b4b619281 (6.4.x)
+	NOTE: https://github.com/zabbix/zabbix/commit/a2dad304083387b8597ef1d67394f285b105f614 (6.4.x)
+	NOTE: https://github.com/zabbix/zabbix/commit/
 CVE-2024-22114 (User with no permission to any of the Hosts can access and view host c ...)
 	- zabbix 1:7.0.0+dfsg-1 (bug #1078553)
 	NOTE: https://support.zabbix.com/browse/ZBX-25015



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/97fe7f455b89027c07e9e880410739f3b5e65598

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/97fe7f455b89027c07e9e880410739f3b5e65598
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240916/07bf3a0b/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list