I have received a very simple patch from the upstream developers
(perhaps) fixing just a minor issue regarding one of the several
reported security issues.
I'm giving up here trying to get a security patch. There are way too
many changes across the versions and upstream doesn't have resources to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I am running 1.8.6 and 1.8.10 backported to Squeeze for quite
some time. They build fine and work nicely. If it is allowed to
make a suggestion:
If you don't want to upgrade Zabbix in Squeeze to version
1.8.10, and if upstream doesn't provide patches
Package: zabbix
Version: 1:1.8.2-1squeeze2
Tags: security
Severity: grave
There appear to be several unfixed unverabilities in Zabbix in
squeeze, including SQL injection vulnerabilities:
http://security-tracker.debian.org/tracker/CVE-2011-2904
3 matches
Mail list logo