Login
Newsletter
Werbung

Sicherheit: Pufferüberlauf in Nagios
Aktuelle Meldungen Distributionen
Name: Pufferüberlauf in Nagios
ID: FEDORA-2013-0752
Distribution: Fedora
Plattformen: Fedora 16
Datum: Mi, 23. Januar 2013, 06:49
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6096
Applikationen: Nagios

Originalnachricht

Name        : nagios
Product : Fedora 16
Version : 3.4.4
Release : 1.fc16
URL : http://www.nagios.org/
Summary : Nagios monitors hosts and services and yells if somethings breaks
Description :
Nagios is a program that will monitor hosts and services on your
network. It has the ability to send email or page alerts when a
problem arises and when a problem is resolved. Nagios is written
in C and is designed to run under Linux (and some other *NIX
variants) as a background process, intermittently running checks
on various services that you specify.

The actual service checks are performed by separate "plugin" programs
which return the status of the checks to Nagios. The plugins are
available at http://sourceforge.net/projects/nagiosplug.

This package provides the core program, web interface, and documentation
files for Nagios. Development files are built as a separate package.

-------------------------------------------------------------------------------
-
Update Information:

Update to 3.4.4; CVE-2012-6096
-------------------------------------------------------------------------------
-
ChangeLog:

* Sun Jan 13 2013 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.4.4-1
- Update to 3.4.4; CVE-2012-6096 (#893269)
- Refactored the patch
nagios-0010-Added-several-images-to-the-sample-config.patch
as patch can't create binary files (#875362).
The old patch10 was replaced by
nagios-0010-Added-several-images-to-the-sample-config-revb.patch
and the PNG files included as sources 10, 11, and 12.
* Tue Dec 4 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.4.3-1
- Upgrade to 3.4.3
* Sat Nov 10 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.4.2-1
- Upgrade to 3.4.2
* Fri Jul 20 2012 Fedora Release Engineering
<rel-eng@lists.fedoraproject.org> - 3.4.1-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Thu Jun 28 2012 Petr Pisar <ppisar@redhat.com> - 3.4.1-2
- Perl 5.16 rebuild
* Mon Jun 25 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.4.1-1
- Upgrade to 3.4.1 (#835047)
- Dropped nagios-0012-Fixed-html-rss-install-files.patch
* Fri Jun 15 2012 Petr Pisar <ppisar@redhat.com> - 3.3.1-4
- Perl 5.16 rebuild
* Fri Feb 10 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.3.1-3
- Move the nagios-common's usermod line to the main nagios package
(#627527).
* Fri Feb 10 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.3.1-2
- Add php to the requirements list (#519371, et al.).
* Tue Feb 7 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.3.1-1
- Upgrade to 3.3.1 (#732329);
includes fixes for CVE-2011-1523 and CVE-2011-2179 (#690880, #690881,
#709874).
- Make nagios-common own the /usr/lib{,64}/nagios/plugins directories
(#756839).
- Change the ownership of /etc/nagios to the nagios-common package (#756839).
- Retab (tabs -> spaces).
* Fri Jan 13 2012 Fedora Release Engineering
<rel-eng@lists.fedoraproject.org> - 3.2.3-13
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Dec 6 2011 Adam Jackson <ajax@redhat.com> - 3.2.3-12
- Rebuild for new libpng
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #893269 - CVE-2012-6096 nagios: stack-based buffer overflow in
history.cgi
https://bugzilla.redhat.com/show_bug.cgi?id=893269
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update nagios' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Gewinnspiel
Neue Nachrichten
Werbung