Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8cc2d0da by Tobias Frost at 2025-04-18T17:49:16+02:00
CVE-2024-42325/zabbix pinpoint fixing commits
(via upstream ticket DEV-3890)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6127,6 +6127,9 @@ CVE-2024-45699 (The endpoint
/zabbix.php?action=export.valuemaps suffers from a
CVE-2024-42325 (Zabbix API user.get returns all users that share common group
with the ...)
- zabbix 1:7.0.9+dfsg-1
NOTE: https://support.zabbix.com/browse/ZBX-26258
+ NOTE: Fixed by (merge commit)
https://github.com/zabbix/zabbix/commit/2b6d97beac19674ad238f98f971cf83dca352386
(6.0.38rc1)
+ NOTE: Fixed by (merge commit)
https://github.com/zabbix/zabbix/commit/9edbc84251a1fb2ab75dc974c334d300d4705390
(5.0.46rc1)
+ NOTE: Fixed by (merge commit)
https://github.com/zabbix/zabbix/commit/652fd57e8d93b2890f7484771d4fdf290a459b11
(7.0.9rc1)
CVE-2024-39780 (A YAML deserialization vulnerability was found in the Robot
Operating ...)
- ros-dynamic-reconfigure <unfixed> (bug #1102010)
[bookworm] - ros-dynamic-reconfigure <no-dsa> (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8cc2d0da6fbf43b8eee331dfb694c70303d82dc0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8cc2d0da6fbf43b8eee331dfb694c70303d82dc0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
