1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
|
Candidate: CVE-2013-6824
PublicDate: 2013-12-18
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6824
https://support.zabbix.com/browse/ZBX-7479
Description:
Zabbix before 1.8.19rc1, 2.0 before 2.0.10rc1, and 2.2 before 2.2.1rc1
allows remote Zabbix servers and proxies to execute arbitrary commands via
a newline in a flexible user parameter.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_zabbix:
upstream: https://support.zabbix.com/secure/attachment/25562/zbx-7479-1.8.18.patch
upstream_zabbix: released (1:2.2.0+dfsg-6)
lucid_zabbix: ignored (reached end-of-life)
precise_zabbix: ignored (reached end-of-life)
precise/esm_zabbix: DNE (precise was needed)
quantal_zabbix: ignored (reached end-of-life)
raring_zabbix: ignored (reached end-of-life)
saucy_zabbix: ignored (reached end-of-life)
trusty_zabbix: not-affected (1:2.2.2+dfsg-1ubuntu1)
utopic_zabbix: not-affected
vivid_zabbix: not-affected
vivid/stable-phone-overlay_zabbix: DNE
vivid/ubuntu-core_zabbix: DNE
wily_zabbix: not-affected
xenial_zabbix: not-affected
yakkety_zabbix: not-affected
zesty_zabbix: not-affected
devel_zabbix: not-affected
|