Oval Definition:oval:org.opensuse.security:def:109828
Revision Date:2021-05-16Version:1
Title:Security update for nagios (Important)
Description:

This update for nagios fixes the following issues:

- new nagios-exec-start-post script to fix boo#1003362

- fix nagios_upgrade.sh writing to log file in user controlled directory (boo#1182398). The nagios_upgrade.sh script writes the logfile directly below /var/log/

nagios was updated to 4.4.6:

* Fixed Map display in Internet Explorer 11 (#714) * Fixed duplicate properties appearing in statusjson.cgi (#718) * Fixed NERD not building when enabled in ./configure (#723) * Fixed build process when using GCC 10 (#721) * Fixed postauth vulnerabilities in histogram.js, map.js, trends.js (CVE-2020-13977, boo#1172794) * When using systemd, configuration will be verified before reloading (#715) * Fixed HARD OK states triggering on the maximum check attempt (#757)

Fix for CVE-2016-6209 (boo#989759) - The 'corewindow' parameter (as in bringing this to our attention go to Dawid Golunski (boo#1014637)

This update was imported from the openSUSE:Leap:15.2:Update update project.
Family:unixClass:patch
Status:Reference(s):1003362
1014637
1172794
1182398
989759
CVE-2016-6209
CVE-2020-13977
openSUSE-SU-2021:0735-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
SUSE Package Hub for SUSE Linux Enterprise 15 SP2
Product(s):
Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed
  • AND Package Information
  • nagios-4.4.6-bp152.2.3.1 is installed
  • OR nagios-contrib-4.4.6-bp152.2.3.1 is installed
  • OR nagios-devel-4.4.6-bp152.2.3.1 is installed
  • OR nagios-theme-exfoliation-4.4.6-bp152.2.3.1 is installed
  • OR nagios-www-4.4.6-bp152.2.3.1 is installed
  • OR nagios-www-dch-4.4.6-bp152.2.3.1 is installed
    • BACK