nagios2 2.11-1ubuntu1.4 source package in Ubuntu

Changelog

nagios2 (2.11-1ubuntu1.4) hardy-security; urgency=low

  * SECURITY UPDATE: authorization check bypass and arbitrary command
    execution via custom form or browser addon (LP: #301542)
    - debian/patches/31_CVE_2008_5027.dpatch: cgi/cmd.c: strip semicolons and
      newlines in commit_command().
    - CVE-2008-5027
  * SECURITY UPDATE: Cross-site request forgery (CSRF) arbitrary command
    execution (LP: #301542)
    - debian/patches/32_CVE_2008_5028.dpatch: disable CMD_CHANGE commands in
      base/commands.c
    - CVE-2008-5028
  * debian/rules: do not update po tree for security updates.

 -- Marc Deslauriers <email address hidden>   Mon, 22 Dec 2008 10:52:07 -0500

Upload details

Uploaded by:
Marc Deslauriers on 2008-12-22
Uploaded to:
Hardy
Original maintainer:
MOTU
Architectures:
any
Section:
net
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
nagios2_2.11.orig.tar.gz 1.7 MiB 0c4425401e0b9a8ba1d2e689fc8dd9a5016ee35ac5c66285d02eca393dd6cda5
nagios2_2.11-1ubuntu1.4.diff.gz 36.6 KiB 73e56adb376d1d7446e2edfc1380624c2e3a6d492e4a6483ba25b86a6ce6e5e3
nagios2_2.11-1ubuntu1.4.dsc 1.1 KiB 435d49225e422316d684ca4e1b76b4f1cb41499ae0c660048398d58426adcd76

View changes file

Binary packages built by this source

nagios2: No summary available for nagios2 in ubuntu hardy.

No description available for nagios2 in ubuntu hardy.

nagios2-common: No summary available for nagios2-common in ubuntu hardy.

No description available for nagios2-common in ubuntu hardy.

nagios2-dbg: No summary available for nagios2-dbg in ubuntu hardy.

No description available for nagios2-dbg in ubuntu hardy.

nagios2-doc: No summary available for nagios2-doc in ubuntu hardy.

No description available for nagios2-doc in ubuntu hardy.