Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f5878095 by Moritz Muehlenhoff at 2026-03-09T11:14:42+01:00
new zabbix issue
- - - - -
2 changed files:
- data/CVE/list
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -575,7 +575,9 @@ CVE-2026-26017 (CoreDNS is a DNS server that chains
plugins. Prior to version 1.
CVE-2026-24696 (The WebSocket Application Programming Interface lacks
restrictions on ...)
NOT-FOR-US: Everon OCPP Backends
CVE-2026-23925 (An authenticated Zabbix user (User role) with template/host
write perm ...)
- TODO: check
+ - zabbix 1:7.0.22+dfsg-1
+ [bookworm] - zabbix <no-dsa> (Minor issue)
+ NOTE: https://support.zabbix.com/browse/ZBX-27567
CVE-2026-20882 (The WebSocket Application Programming Interface lacks
restrictions on ...)
NOT-FOR-US: Mobiliti e-mobi.hu
CVE-2026-20748 (The WebSocket backend uses charging station identifiers to
uniquely as ...)
=====================================
data/next-point-update.txt
=====================================
@@ -194,6 +194,8 @@ CVE-2025-49641
[trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
CVE-2025-49643
[trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
+CVE-2026-23925
+ [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
CVE-2025-58150
[trixie] - xen 4.20.2+37-g61ff35323e-0+deb13u1
CVE-2026-23553
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f5878095a60d378c8ea13d24da835ed52bb47615
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f5878095a60d378c8ea13d24da835ed52bb47615
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
