FEDORA-EPEL-2017-16880697fe

security update in Fedora EPEL 6 for nagios

Status: obsolete

Update to latest in git


Updated from 4.3.1 maint to 4.3.2


We find out that RHEL-6 does not like non-UTF so removed German translation


Major update to Nagios to address outstanding Security needs.


nagios-4.0.8-1.fc21 nagios-4.0.8-1.fc22 nagios-4.0.8-1.el6 nagios-4.0.8-1.el7 nagios-4.0.8-1.fc23

  • update to 4.0.8

Comments 4

This update has been submitted for testing by smooge.

This update has obsoleted nagios-4.3.2-1.el6, and has inherited its bugs and notes.

This update has been pushed to testing.

This update has been obsoleted by nagios-4.3.2-5.el6.

Content Type
RPM
Status
obsolete
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 years ago
in testing 2 years ago

Related Bugs 25

00 #469320 CVE-2008-4796 snoopy: command execution via shell metacharacters
00 #958002 CVE-2013-4214 Nagios core: html/rss-newsfeed.php insecure temporary file usage
00 #958305 CVE-2008-4796 snoopy: command execution via shell metacharacters [epel-6]
00 #994780 CVE-2013-4214 nagios: Nagios core: html/rss-newsfeed.php insecure temporary file usage [epel-6]
00 #1005974 nagios-4.3.2 is available
00 #1036331 [cosmetic] Double slash in Nagios' web interface URL
00 #1046113 CVE-2013-7108 CVE-2013-7205 nagios: denial of service due to off-by-one flaw in process_cgivars()
00 #1046333 CVE-2013-7108 CVE-2013-7205 nagios: denial of service due to off-by-one flaw in process_cgivars() [fedora-all]
00 #1046335 CVE-2013-7108 CVE-2013-7205 nagios: denial of service due to off-by-one flaw in process_cgivars() [epel-6]
00 #1066580 CVE-2014-1878 nagios: possible buffer overflows in cmd.cgi [fedora-all]
00 #1066582 CVE-2014-1878 nagios: possible buffer overflows in cmd.cgi [epel-6]
00 #1074611 Consider using Nagios 4.x branch for EPEL7
00 #1075867 Upgrade to Nagios 4.x
00 #1083003 Nagios SIGSEGV on (internal to nagios) scheduled log rotate if livestatus module is loaded and a downtime is set
00 #1084934 Unable to reload nagios under systemd
00 #1111720 use_embedded_perl_implicitly=1 by default is user-hostile
00 #1121499 CVE-2014-5009 CVE-2014-5008 CVE-2008-7313 nagios: snoopy: incomplete fixes for command execution flaws [fedora-all]
00 #1121500 CVE-2014-5009 CVE-2014-5008 CVE-2008-7313 nagios: snoopy: incomplete fixes for command execution flaws [epel-all]
00 #1189183 Does not handle invalid hostgroup_member correctly
00 #1201462 Update Nagios package to at least -5
00 #1201849 Support an environment file in the systemd unit file
00 #1218320 Install the Nagios checkresults directory with group-writable permissions
00 #1402871 CVE-2016-9566 nagios: Privilege escalation issue [epel-all]
00 #1426816 Nagios RPM 4.2.4 forgot to reload systemd in postinstall
00 #1428111 Broken links in the View Trends and the View Histogram menu

Automated Test Results