Candidate: CVE-2016-4338
PublicDate: 2017-01-23 21:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4338
 http://seclists.org/bugtraq/2016/May/11
 https://support.zabbix.com/browse/ZBX-10741
Description:
 The mysql user parameter configuration script (userparameter_mysql.conf) in
 the agent in Zabbix before 2.0.18, 2.2.x before 2.2.13, and 3.0.x before
 3.0.3, when used with a shell other than bash, allows context-dependent
 attackers to execute arbitrary code or SQL commands via the mysql.size
 parameter.
Ubuntu-Description:
 It was discovered that Zabbix incorrectly handled certain inputs. An attacker
 could possibly use this to execute arbitrary code or SQL commands.
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=823329
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H [8.1 HIGH]

Patches_zabbix:
upstream_zabbix: released (1:2.2.7+dfsg-2+deb8u1, 1:3.0.3+dfsg-1)
precise_zabbix: ignored (reached end-of-life)
precise/esm_zabbix: DNE (precise was needs-triage)
trusty_zabbix: ignored (out of standard support)
trusty/esm_zabbix: needed
vivid/stable-phone-overlay_zabbix: DNE
vivid/ubuntu-core_zabbix: DNE
wily_zabbix: ignored (reached end-of-life)
xenial_zabbix: not-affected (1:2.4.7+dfsg-2ubuntu2.1)
yakkety_zabbix: ignored (reached end-of-life)
zesty_zabbix: ignored (reached end-of-life)
artful_zabbix: ignored (reached end-of-life)
bionic_zabbix: not-affected (1:3.0.12+dfsg-1)
cosmic_zabbix: not-affected (1:3.0.17+dfsg-1)
disco_zabbix: not-affected (1:3.0.17+dfsg-1)
eoan_zabbix: not-affected (1:3.0.17+dfsg-1)
focal_zabbix: not-affected (1:3.0.17+dfsg-1)
groovy_zabbix: not-affected (1:3.0.17+dfsg-1)
hirsute_zabbix: not-affected (1:3.0.17+dfsg-1)
impish_zabbix: not-affected (1:3.0.17+dfsg-1)
jammy_zabbix: not-affected (1:3.0.17+dfsg-1)
devel_zabbix: not-affected (1:3.0.17+dfsg-1)