Nixpkgs security tracker
by @LeSuisse Activity log
- Created suggestion
-
@LeSuisse
ignored
53 packages
- zabbixctl
- zabbix-cli
- zabbix.web
- zabbix.agent
- zabbix60.web
- zabbix70.web
- zabbix72.web
- zabbix74.web
- zabbix.agent2
- zabbix.server
- zabbix60.agent
- zabbix70.agent
- zabbix72.agent
- zabbix74.agent
- zabbix60.server
- zabbix70.server
- zabbix72.server
- zabbix74.server
- zabbix.proxy-mysql
- zabbix.proxy-pgsql
- zabbix.proxy-sqlite
- zabbix.server-mysql
- zabbix.server-pgsql
- zabbix60.proxy-mysql
- zabbix60.proxy-pgsql
- zabbix70.proxy-mysql
- zabbix70.proxy-pgsql
- zabbix72.proxy-mysql
- zabbix72.proxy-pgsql
- zabbix74.proxy-mysql
- zabbix74.proxy-pgsql
- zabbix60.proxy-sqlite
- zabbix60.server-mysql
- zabbix60.server-pgsql
- zabbix70.proxy-sqlite
- zabbix70.server-mysql
- zabbix70.server-pgsql
- zabbix72.proxy-sqlite
- zabbix72.server-mysql
- zabbix72.server-pgsql
- zabbix74.proxy-sqlite
- zabbix74.server-mysql
- zabbix74.server-pgsql
- python312Packages.pyzabbix
- python313Packages.pyzabbix
- python314Packages.pyzabbix
- python312Packages.py-zabbix
- python313Packages.py-zabbix
- python314Packages.py-zabbix
- python312Packages.zabbix-utils
- python313Packages.zabbix-utils
- python314Packages.zabbix-utils
- zabbix-agent2-plugin-postgresql
- @LeSuisse accepted
- @LeSuisse published on GitHub
Agent 2 Oracle plugin TNS connection string injection via the 'service' parameter
A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' parameter. This can lead to Agent 2 connecting to an attacker-controlled server and leaking Oracle database credentials if they are saved in a named session.
References
Affected products
- =<7.0.23
- =<7.4.7
- =<6.0.44
Matching in nixpkgs
pkgs.zabbix60.agent2
Enterprise-class open source distributed monitoring solution (client-side agent)
-
nixos-unstable agent2-6.0.45
- nixpkgs-unstable agent2-6.0.45
- nixos-unstable-small agent2-6.0.45
-
nixos-25.11 agent2-6.0.43
- nixos-25.11-small agent2-6.0.43
- nixpkgs-25.11-darwin agent2-6.0.43
pkgs.zabbix70.agent2
Enterprise-class open source distributed monitoring solution (client-side agent)
-
nixos-unstable agent2-7.0.25
- nixpkgs-unstable agent2-7.0.25
- nixos-unstable-small agent2-7.0.25
-
nixos-25.11 agent2-7.0.22
- nixos-25.11-small agent2-7.0.22
- nixpkgs-25.11-darwin agent2-7.0.22
pkgs.zabbix72.agent2
Enterprise-class open source distributed monitoring solution (client-side agent)
-
nixos-25.11 agent2-7.2.15
- nixos-25.11-small agent2-7.2.15
- nixpkgs-25.11-darwin agent2-7.2.15
pkgs.zabbix74.agent2
Enterprise-class open source distributed monitoring solution (client-side agent)
-
nixos-unstable agent2-7.4.9
- nixpkgs-unstable agent2-7.4.9
- nixos-unstable-small agent2-7.4.9
-
nixos-25.11 agent2-7.4.6
- nixos-25.11-small agent2-7.4.6
- nixpkgs-25.11-darwin agent2-7.4.6
Ignored packages (53)
pkgs.zabbixctl
Most effective way for operating in Zabbix Server
-
nixos-unstable 2021-05-25
- nixpkgs-unstable 2021-05-25
- nixos-unstable-small 2021-05-25
-
nixos-25.11 2021-05-25
- nixos-25.11-small 2021-05-25
- nixpkgs-25.11-darwin 2021-05-25
pkgs.zabbix-cli
Command-line interface for Zabbix
pkgs.zabbix.web
Enterprise-class open source distributed monitoring solution (web frontend)
pkgs.zabbix.agent
Enterprise-class open source distributed monitoring solution (client-side agent)
pkgs.zabbix60.web
Enterprise-class open source distributed monitoring solution (web frontend)
pkgs.zabbix70.web
Enterprise-class open source distributed monitoring solution (web frontend)
pkgs.zabbix72.web
Enterprise-class open source distributed monitoring solution (web frontend)
pkgs.zabbix74.web
Enterprise-class open source distributed monitoring solution (web frontend)
pkgs.zabbix.agent2
Enterprise-class open source distributed monitoring solution (client-side agent)
-
nixos-unstable agent2-6.0.45
- nixpkgs-unstable agent2-6.0.45
- nixos-unstable-small agent2-6.0.45
-
nixos-25.11 agent2-6.0.43
- nixos-25.11-small agent2-6.0.43
- nixpkgs-25.11-darwin agent2-6.0.43
pkgs.zabbix.server
Enterprise-class open source distributed monitoring solution
pkgs.zabbix60.agent
Enterprise-class open source distributed monitoring solution (client-side agent)
pkgs.zabbix70.agent
Enterprise-class open source distributed monitoring solution (client-side agent)
pkgs.zabbix72.agent
Enterprise-class open source distributed monitoring solution (client-side agent)
pkgs.zabbix74.agent
Enterprise-class open source distributed monitoring solution (client-side agent)
pkgs.zabbix60.server
Enterprise-class open source distributed monitoring solution
pkgs.zabbix70.server
Enterprise-class open source distributed monitoring solution
pkgs.zabbix72.server
Enterprise-class open source distributed monitoring solution
pkgs.zabbix74.server
Enterprise-class open source distributed monitoring solution
pkgs.zabbix.proxy-mysql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix.proxy-pgsql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix.proxy-sqlite
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix.server-mysql
Enterprise-class open source distributed monitoring solution
pkgs.zabbix.server-pgsql
Enterprise-class open source distributed monitoring solution
pkgs.zabbix60.proxy-mysql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix60.proxy-pgsql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix70.proxy-mysql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix70.proxy-pgsql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix72.proxy-mysql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix72.proxy-pgsql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix74.proxy-mysql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix74.proxy-pgsql
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix60.proxy-sqlite
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix60.server-mysql
Enterprise-class open source distributed monitoring solution
pkgs.zabbix60.server-pgsql
Enterprise-class open source distributed monitoring solution
pkgs.zabbix70.proxy-sqlite
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix70.server-mysql
Enterprise-class open source distributed monitoring solution
pkgs.zabbix70.server-pgsql
Enterprise-class open source distributed monitoring solution
pkgs.zabbix72.proxy-sqlite
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix72.server-mysql
Enterprise-class open source distributed monitoring solution
pkgs.zabbix72.server-pgsql
Enterprise-class open source distributed monitoring solution
pkgs.zabbix74.proxy-sqlite
Enterprise-class open source distributed monitoring solution (client-server proxy)
pkgs.zabbix74.server-mysql
Enterprise-class open source distributed monitoring solution
pkgs.zabbix74.server-pgsql
Enterprise-class open source distributed monitoring solution
pkgs.python312Packages.pyzabbix
Module to interact with the Zabbix API
pkgs.python313Packages.pyzabbix
Module to interact with the Zabbix API
pkgs.python314Packages.pyzabbix
Module to interact with the Zabbix API
pkgs.python312Packages.py-zabbix
Python module to interact with Zabbix
pkgs.python313Packages.py-zabbix
Python module to interact with Zabbix
pkgs.python314Packages.py-zabbix
Python module to interact with Zabbix
pkgs.python312Packages.zabbix-utils
Library for zabbix
pkgs.python313Packages.zabbix-utils
Library for zabbix
pkgs.python314Packages.zabbix-utils
Library for zabbix
pkgs.zabbix-agent2-plugin-postgresql
Required tool for Zabbix agent integrated PostgreSQL monitoring
-
nixos-unstable agent2-plugin-postgresql-7.4.8
- nixpkgs-unstable agent2-plugin-postgresql-7.4.8
- nixos-unstable-small agent2-plugin-postgresql-7.4.8
-
nixos-25.11 agent2-plugin-postgresql-7.4.1
- nixos-25.11-small agent2-plugin-postgresql-7.4.1
- nixpkgs-25.11-darwin agent2-plugin-postgresql-7.4.1
Package maintainers
-
@aanderse Aaron Andersen <aaron@fosslib.net>
-
@bstanderline bstanderline