[Git][security-tracker-team/security-tracker][master] CVE-2025-49641/zabbix
Bastien Roucariès (@rouca)
rouca at debian.org
Mon Oct 20 19:11:12 BST 2025
Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker
Commits:
497ccf5d by Bastien Roucariès at 2025-10-20T20:10:30+02:00
CVE-2025-49641/zabbix
Add internal id and commit found by matching this internal ID
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5623,6 +5623,10 @@ CVE-2025-49844 (Redis is an open source, in-memory database that persists on dis
CVE-2025-49641 (A regular Zabbix user with no permission to the Monitoring -> Problems ...)
- zabbix <unfixed> (bug #1117448)
NOTE: https://support.zabbix.com/browse/ZBX-27063
+ NOTE: Internal ID DEV-4393
+ NOTE: Fixed by merge commit https://github.com/zabbix/zabbix/commit/bc22c5969061c44f5fd390f7dc6c7ce8a45fae5a (6.0.41rc1)
+ NOTE: Fixed by merge commit https://github.com/zabbix/zabbix/commit/968955a38dcf5e6d545710147c88927b4d910124 (7.0.18rc2)
+ NOTE: Fixed by merge commit https://github.com/zabbix/zabbix/commit/4b26cec0e051335b028b8fa53698a9d425cfac90 (7.4.2rc1)
NOTE: Fixed in: 6.0.41, 7.0.18, 7.2.12, 7.4.2
CVE-2025-48730 (A use of externally-controlled format string vulnerability has been re ...)
NOT-FOR-US: QNAP
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/497ccf5d241be319a464ef3e44da95300b2924f3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/497ccf5d241be319a464ef3e44da95300b2924f3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251020/a6387451/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list