Information on source package zabbix

Available versions

ReleaseVersion
jessie (security)1:2.2.7+dfsg-2+deb8u2
stretch1:3.0.7+dfsg-3
buster1:3.0.7+dfsg-3
sid1:3.0.7+dfsg-3

Open issues

BugjessiestretchbustersidDescription
CVE-2017-2825vulnerablefixedfixedfixed
CVE-2017-2824vulnerablefixedfixedfixedAn exploitable code execution vulnerability exists in the trapper ...

Open unimportant issues

BugjessiestretchbustersidDescription
CVE-2016-9140vulnerablefixedfixedfixedRCE

Resolved issues

BugDescription
TEMP-0391388-A7E978zabbix format string vulnerabilities
TEMP-0391388-8371ADzabbix buffer overflows
CVE-2016-4338The mysql user parameter configuration script ...
CVE-2016-10134SQL injection vulnerability in Zabbix before 2.2.14 and 3.0 before ...
CVE-2014-9450Multiple SQL injection vulnerabilities in chart_bar.php in the ...
CVE-2014-3005zabbix: local file inclusion via XXE
CVE-2014-1685The Frontend in Zabbix before 1.8.20rc2, 2.0.x before 2.0.11rc2, and ...
CVE-2014-1682The API in Zabbix before 1.8.20rc1, 2.0.x before 2.0.11rc1, and 2.2.x ...
CVE-2013-6824Zabbix before 1.8.19rc1, 2.0 before 2.0.10rc1, and 2.2 before 2.2.1rc1 ...
CVE-2013-5743
CVE-2013-5572Zabbix 2.0.5 allows remote authenticated users to discover the LDAP ...
CVE-2013-1364The user.login function in Zabbix before 1.8.16 and 2.x before ...
CVE-2012-6086libs/zbxmedia/eztexting.c in Zabbix 1.8.x before 1.8.18rc1, 2.0.x ...
CVE-2012-3435SQL injection vulnerability in frontends/php/popup_bitem.php in Zabbix ...
CVE-2011-5027Cross-site scripting (XSS) vulnerability in ZABBIX before 1.8.10 ...
CVE-2011-4674SQL injection vulnerability in popup.php in Zabbix 1.8.3 and 1.8.4, ...
CVE-2011-4615Multiple cross-site scripting (XSS) vulnerabilities in Zabbix before ...
CVE-2011-3265popup.php in Zabbix before 1.8.7 allows remote attackers to read the ...
CVE-2011-3264Zabbix before 1.8.6 allows remote attackers to obtain sensitive ...
CVE-2011-3263zabbix_agentd in Zabbix before 1.8.6 and 1.9.x before 1.9.4 allows ...
CVE-2011-2904Cross-site scripting (XSS) vulnerability in acknow.php in Zabbix ...
CVE-2010-5049SQL injection vulnerability in events.php in Zabbix 1.8.1 and earlier ...
CVE-2010-2790Multiple cross-site scripting (XSS) vulnerabilities in the formatQuery ...
CVE-2010-1277SQL injection vulnerability in the user.authenticate method in the API ...
CVE-2009-4502The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, ...
CVE-2009-4501The zbx_get_next_field function in libs/zbxcommon/str.c in Zabbix ...
CVE-2009-4500The process_trap function in trapper/trapper.c in Zabbix Server before ...
CVE-2009-4499SQL injection vulnerability in the get_history_lastid function in the ...
CVE-2009-4498The node_process_command function in Zabbix Server before 1.8 allows ...
CVE-2008-7220Unspecified vulnerability in Prototype JavaScript framework ...
CVE-2008-1353zabbix_agentd in ZABBIX 1.4.4 allows remote attackers to cause a ...
CVE-2007-6210zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" ...
CVE-2007-0640Buffer overflow in ZABBIX before 1.1.5 has unknown impact and attack ...
CVE-2006-6693Multiple buffer overflows in zabbix before 20061006 allow attackers to ...
CVE-2006-6692Multiple format string vulnerabilities in zabbix before 20061006 allow ...

Security announcements

DSA / DLADescription
DSA-3802-1zabbix - security update
DSA-2539-1zabbix - SQL injection
DSA-1420-1zabbix - programming error

Search for package or bug name: Reporting problems