Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3f6b7ba8 by Salvatore Bonaccorso at 2024-01-23T20:38:57+01:00
Fix indentation in entries
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6419,7 +6419,7 @@ CVE-2023-33214 (Cross-Site Request Forgery (CSRF)
vulnerability in Tagbox Tagbox
NOT-FOR-US: WordPress plugin
CVE-2023-32728 (The Zabbix Agent 2 item key smart.disk.get does not sanitize
its param ...)
- zabbix 1:6.0.24+dfsg-1
- [buster] - zabbix <not-affected> (Vulnerable code introduced later)
+ [buster] - zabbix <not-affected> (Vulnerable code introduced later)
NOTE: https://support.zabbix.com/browse/ZBX-23858
NOTE:
https://github.com/zabbix/zabbix/commit/51ee1af626f93c1656ee2e37aa3d611b0292c1d8
(6.0.24rc1)
NOTE:
https://github.com/zabbix/zabbix/commit/f4557473616f455eefe8f303721b4cec473ece4c
(6.0.24rc1)
@@ -6428,14 +6428,14 @@ CVE-2023-32728 (The Zabbix Agent 2 item key
smart.disk.get does not sanitize its
NOTE:
https://github.com/zabbix/zabbix/commit/09fa80bb16b094e4c17c036868c817f411efe4a0
(6.0.24rc1)
NOTE:
https://github.com/zabbix/zabbix/commit/7c00b48ab998066962e5275efa50007cb72ea1ac
(6.0.24rc1)
NOTE:
https://github.com/zabbix/zabbix/commit/245fbae6039ebfbd720ab33c0349c82bae242fc9
(6.0.24rc1)
- NOTE: Vulnerable feature introduced with versions 5.0.9rc1, 5.3.5rc1
and 5.4.0alpha2 https://support.zabbix.com/browse/ZBXNEXT-6339
+ NOTE: Vulnerable feature introduced with versions 5.0.9rc1, 5.3.5rc1
and 5.4.0alpha2 https://support.zabbix.com/browse/ZBXNEXT-6339
CVE-2023-32727 (An attacker who has the privilege to configure Zabbix items
can use fu ...)
- zabbix 1:6.0.23+dfsg-1
- [buster] - zabbix <not-affected> (Vulnerable code introduced later)
+ [buster] - zabbix <not-affected> (Vulnerable code introduced later)
NOTE: https://support.zabbix.com/browse/ZBX-23857
NOTE:
https://github.com/zabbix/zabbix/commit/93e090592fc6de7ec5d3d42c1bb9074ad1f3ba34
(6.0.23rc1)
NOTE:
https://github.com/zabbix/zabbix/commit/610f9fdbb86667f4094972547deb936c6cdfc6d5
(6.0.23rc1)
- NOTE: introduced in
https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/57abe5a1f2c208d05cc59029026098c2f13ed464
(4.4.0alpha3)
+ NOTE: introduced in
https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/57abe5a1f2c208d05cc59029026098c2f13ed464
(4.4.0alpha3)
CVE-2023-32726 (The vulnerability is caused by improper check for check if
RDLENGTH do ...)
- zabbix 1:6.0.24+dfsg-1
NOTE: https://support.zabbix.com/browse/ZBX-23855
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f6b7ba836eb8467134cedf842e3b284f9af4c4f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f6b7ba836eb8467134cedf842e3b284f9af4c4f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
