Debian Bug report logs -
#452682
zabbix-agent runs as user 'zabbix' with gid=0 (root), configuring additional groups doesn't work
Package:
zabbix-agent;
Maintainer for zabbix-agent is Dmitry Smirnov <onlyjob@debianorg>; Source for zabbix-agent is src:zabbix (PTS, buildd, popcon)
Reported by: Bas van Schaik <bas@tuxesnl& ...
Bas van Schaik discovered that the agentd process of Zabbix, a network
monitor system, may run user-supplied commands as group id root, not
zabbix, which may lead to a privilege escalation
zabbix is not included in the oldstable distribution (sarge)
For the stable distribution (etch), this problem has been fixed in version
1:114-10etch1
...