Debian DSA-3802-1 : zabbix - security update
High Nessus Plugin ID 97530
SynopsisThe remote Debian host is missing a security-related update.
DescriptionA SQL injection vulnerability has been discovered in the 'Latest data'page of the web frontend of the Zabbix network monitoring system
SolutionUpgrade the zabbix packages.
For the stable distribution (jessie), this problem has been fixed in version 1:2.2.7+dfsg-2+deb8u2.
For the upcoming stable distribution (stretch), this problem has been fixed in version 1:3.0.7+dfsg-1.