FEDORA-2021-5689072a7e created by tartina 6 months ago for Fedora 33
stable

Fix for CVE-2020-13977 BZ1849087 Require plugins needed for localhost monitoring (#1932297) Update to 4.4.6

How to install

sudo dnf upgrade --advisory=FEDORA-2021-5689072a7e

This update has been submitted for testing by tartina.

6 months ago

This update's test gating status has been changed to 'ignored'.

6 months ago

This update's test gating status has been changed to 'waiting'.

6 months ago

This update's test gating status has been changed to 'ignored'.

6 months ago

This update has been pushed to testing.

6 months ago
User Icon tjyang commented & provided feedback 6 months ago

How long I need to wait until I can run following upgrade command on a fedora 33 ?

  • sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2021-5689072a7e

Currently, this command is not pulling down the "*-3" pkg.

User Icon tjyang commented & provided feedback 6 months ago
  • On fedora 33. the upgrade of "-1" to "-3" was fine.
  • Concern 1:

<snipped>

Cleanup : nagios-common-4.4.6-1.fc33.x86_64 14/14

Running scriptlet: nagios-common-4.4.6-1.fc33.x86_64 14/14

/etc/tmpfiles.d/dirsrv-TEST-LAN.conf:1: Line references path below legacy directory /var/run/, updating /var/run/dirsrv → /run/dirsrv; please update the tmpfiles.d/ drop-in file accordingly.

/usr/lib/tmpfiles.d/krb5-krb5kdc.conf:1: Line references path below legacy directory /var/run/, updating /var/run/krb5kdc → /run/krb5kdc; please update the tmpfiles.d/ drop-in file accordingly.

/usr/lib/tmpfiles.d/nagios.conf:1: Line references path below legacy directory /var/run/, updating /var/run/nagios → /run/nagios; please update the tmpfiles.d/ drop-in file accordingly.

  • Concern 2: nagios-plugins-ping rpm dependency for localhost was missed.
User Icon tjyang commented & provided feedback 6 months ago
  • Concern 3: /usr/lib/.build-id/* files should be excluded from .rpm.

rpm -ql nagios |grep build

<snipped>

4/usr/lib/.build-id/ea/56d09fef194bede4fdd1c7112e9a02fc5be97e 865/usr/lib/.build-id/f7 866/usr/lib/.build-id/f7/16224ac341fedfa6e160a53bf9b071c08f53dd 867/usr/lib/.build-id/fc 868/usr/lib/.build-id/fc/d38be1f815a5efa48dfa2879dfdfc261dae82d 869/usr/lib/.build-id/fe 870/usr/lib/.build-id/fe/3875c29db14d81a5422e6b03b104f03843006b 871[x220@ipa01 SPECS]$ rpm -ql nagios |grep build |wc 42 42 1779 [me@fedora33 SPECS]$

User Icon tartina commented & provided feedback 6 months ago

Concern 1 and 2: will fix those

Concern 3: why? Every package has build-id to identify debug info when needed

User Icon tjyang commented & provided feedback 6 months ago

I withdraw Concern 3. this show I am very outdated with rpm packaging stuff.

User Icon copperi provided feedback 5 months ago
karma
BZ#1829114 nagios-4.4.6 is available
BZ#1932297 Nagios server rpm missing some nagios-plugins-* dependency

This update can be pushed to stable now if the maintainer wishes

5 months ago

This update has been submitted for stable by bodhi.

5 months ago

This update has been pushed to stable.

5 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
6 months ago
in testing
6 months ago
in stable
5 months ago
BZ#1829114 nagios-4.4.6 is available
0
1
BZ#1849087 CVE-2020-13977 nagios: URL injection (post-authentication) vulnerability [epel-all]
0
0
BZ#1932297 Nagios server rpm missing some nagios-plugins-* dependency
0
1

Automated Test Results