-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2311-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb August 3, 2020 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : zabbix Version : 1:3.0.7+dfsg-3+deb9u1 CVE ID : CVE-2020-15803 Debian Bug : #966146 It was discovered that there was a potential cross-site scripting vulnerability via iframe HTML elements in Zabbix, a PHP-based monitoring system. For Debian 9 "Stretch", this problem has been fixed in version 1:3.0.7+dfsg-3+deb9u1. We recommend that you upgrade your zabbix packages. For the detailed security status of zabbix please refer to its security tracker page at: https://security-tracker.debian.org/tracker/zabbix Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAl8oJ1wACgkQHpU+J9Qx HliSkA//R15Dg5k5IGTHkV3U9nsoj4f8W1JBrGtLy05U7raDjZzI/Otzr20WOtVt Y9Y1TkHFSuFBP2u+S7V4ZSy/vJ+lKpqslBxUHjynsCftZdlgHrfzzlxIs8XW13xq IsXrvd8lB6QEiqrGKOndBo5VIer3vXd48xERSfSeRq1UUk6Gg7FUPoeF/qHaIPTw flchXG+Kkv8mZDpxC9gnb4AorWMLnvsPrJHJkFeFNy2FSxMtmyBMmq0vxF6xZRI+ clFyFlKib6DAoUsmWs87jwKziDuX1EE4adz1EF4rETJIl06OLaFbuUdzuM6KPuYN Wqva83kGQie+d1/gBHOFb/TlrK2kf9CeTz8qXghPk679ZwU/+R7phzrRfcvGjDId sLhv7FzYO9LTS/xj4xg7JyRlsoECYf70a4+9y7rtn2iKsW1UAH92ZT5iRezNxliI NCF/rM2jdIMe/leoCb+dMQv+1vRp1YvOMyEqjvtmyj5Gm+7XZt7vY59vFfagJiOF 5RHnaXJ0VOmKrwqsuJJ+Jz07xCeVlL4Uqx4X8THEU0R7KuqMQ6I/xQZjNHWeMJBm JSk/AlPMAY0mPHn2eUnP/5oEfEDysyTR0wGnWNBKhdIhswr6/7gT9EpWWz7dCed4 MZ8RxFCW55Y8zSNE+oeaFXNnO1oZVG4w5+uPfPMVCbqFsDla/Qw= =na22 -----END PGP SIGNATURE-----
