[Secure-testing-team] Bug#774750: zabbix: CVE-2014-9450
Moritz Muehlenhoff
jmm at inutil.org
Wed Jan 7 06:50:57 UTC 2015
Package: zabbix
Severity: grave
Tags: security
Justification: user security hole
Please see https://support.zabbix.com/browse/ZBX-8582
The patch
https://github.com/svn2github/zabbix/commit/984bd3bec2d6ca5a80104a5574d19b7f4d04f24b
seems partly merged into 2.2.7 (e.g. the auditacts.php hunk is
present, but the ones for auditlogs.php are missing)
Cheers,
Moritz
More information about the Secure-testing-team
mailing list