CVE-2022-23132

During Zabbix installation from RPM, DAC_OVERRIDE SELinux capability is in use to access PID files in [/var/run/zabbix] folder. In this case, Zabbix Proxy or Server processes can bypass file read, write and execute permissions check on the file system level

References

Affected packages

Git / github.com/zabbix/zabbix

Affected ranges

Type

GIT

Repo

https://github.com/zabbix/zabbix

Events

Introduced

Last affected

f56fed83bc4778f6c8fdc6bedc956d6c2059c56b

Introduced

Last affected

315ec0e63a834834015e7431cc685c6b3ad8c265

Introduced

Last affected

1ca342c90ed471c4547b9a4ea9dfcc147be3f3f0

Introduced

Last affected

e58e4c62e52436a5b5385e7b58b5a7e9376cc67a

Introduced

Last affected

6b9f1a434682b6102080217ff723cad209610a7d

Introduced

Last affected

b07e17de0abf0006ddd56c2eb39d3dacda0ba2eb

Introduced

Last affected

cf8d4a64d29b8fce8e40761533f8dd9438c786fd

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "6.0.0-alpha1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "6.0.0-alpha2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "6.0.0-alpha3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "6.0.0-alpha4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "6.0.0-alpha5"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "6.0.0-alpha6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "6.0.0-alpha7"
        }
    ]
}

Affected versions

6.*

6.0.0alpha1

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "4.0.0"
            },
            {
                "last_affected": "4.0.36"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "5.0.0"
            },
            {
                "last_affected": "5.0.18"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "5.4.0"
            },
            {
                "last_affected": "5.4.8"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "34"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "35"
            }
        ]
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23132.json"