golang.org/x/net-0.17.0 vulnerable to CVE-2023-45288, updated to 0.23.0

XMLWordPrintable

    • Type: Incident report
    • Resolution: Duplicate
    • Priority: Trivial
    • None
    • Affects Version/s: 6.0.35
    • Component/s: Agent2 plugin (G)
    • None
    • Environment:
      RHEL9.4, zabbix-agent2-6.0.35-release1.el9.x86_64

      Steps to reproduce:

      1. We run Orca Security, and it is flagging the /usr/sbin/zabbix_agent2 path with this vulnerability. Impacted version, 0.17.0; fixed version 0.23.0

            Assignee:
            Zabbix Development Team
            Reporter:
            Matt Alvis
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: