Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits: 8bcb9dcc by Sylvain Beucler at 2020-11-09T14:47:41+01:00 dla: claim zabbix + reference patch - - - - - 2 changed files: - data/CVE/list - data/dla-needed.txt Changes: ===================================== data/CVE/list ===================================== @@ -39668,6 +39668,7 @@ CVE-2020-11800 (Zabbix Server 2.2.x and 3.0.x before 3.0.31, and 3.2 allows remo NOTE: https://support.zabbix.com/browse/DEV-1538 NOTE: https://support.zabbix.com/browse/ZBX-17600 NOTE: https://support.zabbix.com/browse/ZBXSEC-30 (not public) + NOTE: https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/85453e04656fc7bd8a6790f5295d79410101745c CVE-2020-11799 (Z-Cron 5.6 Build 04 allows an unprivileged attacker to elevate privile ...) NOT-FOR-US: Z-Cron CVE-2020-11798 (A Directory Traversal vulnerability in the web conference component of ...) ===================================== data/dla-needed.txt ===================================== @@ -170,8 +170,7 @@ xcftools NOTE: 20200523: Proposed fix https://github.com/j-jorge/xcftools/pull/15 (gladk) NOTE: 20200605: Patch https://salsa.debian.org/lts-team/packages/xcftools/-/blob/fix/test-CVE-2019-5087/debian/patches/CVE-2019-5087.patch (gladk) -- -zabbix - NOTE: 20201014: Will require some in-depth investigation work. Upstream ticket remains locked since May, diffoscope of 5.0.1 to 5.0.2 is 44MB and contains approx 50 changes. (lamby) +zabbix (Sylvain Beucler) -- zeromq3 NOTE: 20201026: still testing fixed package (bunk) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8bcb9dcca5ea5915c1cac77e5571c41dee34a970 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8bcb9dcca5ea5915c1cac77e5571c41dee34a970 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits