diff options
| author | Sylvain Beucler <beuc@beuc.net> | 2020-11-12 18:07:34 +0100 |
|---|---|---|
| committer | Sylvain Beucler <beuc@beuc.net> | 2020-11-12 18:15:12 +0100 |
| commit | 59f2749e610ea79f77348b1a8ee82f8e9f2ddd7e (patch) | |
| tree | 6b81759cf7d06ca03f0dfc615ee29fc11ed05b76 /data | |
| parent | ae35fb9734d06e927446f477fe6ee2374a412a36 (diff) | |
zabbix: precise triage
CVE-2019-17382: stretch ignored
CVE-2019-15132: reference patch
CVE-2016-10742: reference patch
Diffstat (limited to 'data')
| -rw-r--r-- | data/CVE/2016.list | 1 | ||||
| -rw-r--r-- | data/CVE/2019.list | 4 |
2 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/2016.list b/data/CVE/2016.list index 682c276fda..87bceb5484 100644 --- a/data/CVE/2016.list +++ b/data/CVE/2016.list @@ -721,6 +721,7 @@ CVE-2016-10742 (Zabbix before 2.2.21rc1, 3.x before 3.0.13rc1, 3.1.x and 3.2.x b [stretch] - zabbix <no-dsa> (Minor issue) NOTE: https://support.zabbix.com/browse/ZBX-10272 NOTE: https://support.zabbix.com/browse/ZBX-13133 + NOTE: https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/2b340b8128af6c00469ef4066de16d4b1e81c841 (3.0.13rc1) CVE-2016-1000282 (Haraka version 2.8.8 and earlier comes with a plugin for processing at ...) NOT-FOR-US: Haraka CVE-2016-1000276 diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 0ca01e34d7..96f599cf68 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -9032,7 +9032,7 @@ CVE-2019-17383 (The netaddr gem before 2.0.4 for Ruby has misconfigured file per CVE-2019-17382 (An issue was discovered in zabbix.php?action=dashboard.view&dashbo ...) - zabbix <unfixed> [buster] - zabbix <no-dsa> (Minor issue) - [stretch] - zabbix <no-dsa> (Minor issue) + [stretch] - zabbix <ignored> (Minor issue, no patch, guest accounts can be disabled) [jessie] - zabbix <no-dsa> (Minor issue, guest accounts can be disabled) NOTE: https://support.zabbix.com/browse/ZBX-16789 NOTE: Disputed by upstream, closed as not a security bug. @@ -14647,6 +14647,8 @@ CVE-2019-15132 (Zabbix through 4.4.0alpha1 allows User Enumeration. With login r [stretch] - zabbix <no-dsa> (Minor issue) [jessie] - zabbix <postponed> (Minor issue) NOTE: https://support.zabbix.com/browse/ZBX-16532 + NOTE: https://support.zabbix.com/browse/ZBX-5842 + NOTE: https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/b5a110e4d1c21d865cd03e3ef8dbc6f37221b60f (4.0.27rc1) CVE-2019-15131 (In Code42 Enterprise 6.7.5 and earlier, 6.8.4 through 6.8.8, and 7.0.0 ...) NOT-FOR-US: Code42 CVE-2019-15130 (The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 ...) |