stable

zabbix7.0-7.0.11-1.el8

FEDORA-EPEL-2025-01e745cb85 created by orion 7 months ago for Fedora EPEL 8

Update to 7.0.11

  • CVE-2024-36465, CVE-2024-36469, CVE-2024-42325, CVE-2024-45699, CVE-2024-45700
  • Re-install SELinux module in %%posttrans to address "upgrade" from zabbixA.B to zabbixX.Y in one transaction

This update has been submitted for testing by orion.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update has been pushed to testing.

7 months ago

This update has been submitted for stable by bodhi.

7 months ago

This update has been pushed to stable.

7 months ago

Please log in to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
2
Stable by Time
7 days
Dates
submitted
7 months ago
in testing
7 months ago
in stable
7 months ago
approved
7 months ago
Builds
1
zabbix7.0-7.0.11-1.el8
BZ#2356852 CVE-2024-36465 zabbix7.0: SQL injection in Zabbix API [epel-8]
0
0
BZ#2356853 CVE-2024-36465 zabbix7.0: SQL injection in Zabbix API [epel-9]
0
0
BZ#2356857 CVE-2024-36469 zabbix7.0: User enumeration via timing attack in Zabbix web interface [epel-8]
0
0
BZ#2356859 CVE-2024-36469 zabbix7.0: User enumeration via timing attack in Zabbix web interface [epel-9]
0
0
BZ#2356865 CVE-2024-42325 zabbix7.0: Excessive information returned by user.get [epel-8]
0
0
BZ#2356867 CVE-2024-42325 zabbix7.0: Excessive information returned by user.get [epel-9]
0
0
BZ#2356872 CVE-2024-45700 zabbix7.0: DoS vulnerability due to uncontrolled resource exhaustion [epel-8]
0
0
BZ#2356874 CVE-2024-45700 zabbix7.0: DoS vulnerability due to uncontrolled resource exhaustion [epel-9]
0
0
BZ#2356879 CVE-2024-45699 zabbix7.0: Reflected XSS vulnerability in /zabbix.php?action=export.valuemaps [epel-8]
0
0
BZ#2356881 CVE-2024-45699 zabbix7.0: Reflected XSS vulnerability in /zabbix.php?action=export.valuemaps [epel-9]
0
0
zabbix7.0-7.0.11-1.el8

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1 on bodhi-web-10-qgq4l.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy