Overview
Request 547333 superseded
This nagios update fixes three vulnerabilities and one
configuration issue:
+ CVE-2016-8641: fix a possible symlink attack for files/dirs
created by root (bsc#1011630 and bsc#1018047)
+ CVE-2016-0726: remove the pre-configured administrative
account with fixed password from the htpasswd file and
provide an empty one instead (boo#961115)
+ CVE-2016-9565: fix remote command injection by MITM the
RSS feeds (boo#1015744)
+ fix apache configuration to work also with latest
apache 2.4 (boo#984116)
- Created by lrupp
- In state superseded
- Superseded by 547334
Request History
lrupp created request
This nagios update fixes three vulnerabilities and one
configuration issue:
+ CVE-2016-8641: fix a possible symlink attack for files/dirs
created by root (bsc#1011630 and bsc#1018047)
+ CVE-2016-0726: remove the pre-configured administrative
account with fixed password from the htpasswd file and
provide an empty one instead (boo#961115)
+ CVE-2016-9565: fix remote command injection by MITM the
RSS feeds (boo#1015744)
+ fix apache configuration to work also with latest
apache 2.4 (boo#984116)
maintbot accepted review
ok
maintbot approved review
ok
AndreasStieger superseded request
newer request