[Git][security-tracker-team/security-tracker][master] CVE-2024-45699/zabbix pinpoint fixing commit
Tobias Frost (@tobi)
tobi at debian.org
Fri Apr 18 16:58:00 BST 2025
Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0f6a501c by Tobias Frost at 2025-04-18T17:56:28+02:00
CVE-2024-45699/zabbix pinpoint fixing commit
via upstream internal ticket DEV-4084.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6124,6 +6124,8 @@ CVE-2024-45700 (Zabbix server is vulnerable to a DoS vulnerability due to uncont
CVE-2024-45699 (The endpoint /zabbix.php?action=export.valuemaps suffers from a Cross- ...)
- zabbix 1:7.0.9+dfsg-1
NOTE: https://support.zabbix.com/browse/ZBX-26254
+ NOTE: fixed by https://github.com/zabbix/zabbix/commit/4c2cf43fade6ea6239f9cba32527a547461bdec9 (7.0.7rc1)
+ NOTE: fixed by (merge commit) https://github.com/zabbix/zabbix/commit/6b98ae293a088183b1c1ba0428664d76f98ef36c (6.0.37rc1)
CVE-2024-42325 (Zabbix API user.get returns all users that share common group with the ...)
- zabbix 1:7.0.9+dfsg-1
NOTE: https://support.zabbix.com/browse/ZBX-26258
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f6a501c7f7fb5ca6361e61a2475489234093a87
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f6a501c7f7fb5ca6361e61a2475489234093a87
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250418/a2aab512/attachment.htm>
More information about the debian-security-tracker-commits
mailing list