Debian Security Advisory
DSA-3802-1 zabbix -- security update
- Date Reported:
- 05 Mar 2017
- Affected Packages:
- Security database references:
- In Mitre's CVE dictionary: CVE-2016-10134.
- More information:
An SQL injection vulnerability has been discovered in the
Latest datapage of the web frontend of the Zabbix network monitoring system
For the stable distribution (jessie), this problem has been fixed in version 1:2.2.7+dfsg-2+deb8u2.
For the upcoming stable distribution (stretch), this problem has been fixed in version 1:3.0.7+dfsg-1.
For the unstable distribution (sid), this problem has been fixed in version 1:3.0.7+dfsg-1.
We recommend that you upgrade your zabbix packages.