Oval Definition:oval:org.opensuse.security:def:20169566
Revision Date:2022-06-30Version:1
Title:CVE-2016-9566
Description:

base/logging.c in Nagios Core before 4.2.4 allows local users with access to an account in the nagios group to gain root privileges via a symlink attack on the log file. NOTE: this can be leveraged by remote attackers using CVE-2016-9565.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-9566
Mitre CVE-2016-9566
SUSE CVE-2016-9566
openSUSE-SU-2017:0146-1
Platform(s):openSUSE Leap 42.1
openSUSE Leap 42.2
openSUSE Leap 42.3
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • openSUSE Leap 42.1 is installed
  • AND Package Information
  • icinga-1.14.0-3.1 is installed
  • AND icinga is signed with openSUSE key
  • OR
  • icinga-devel-1.14.0-3.1 is installed
  • AND icinga-devel is signed with openSUSE key
  • OR
  • icinga-doc-1.14.0-3.1 is installed
  • AND icinga-doc is signed with openSUSE key
  • OR
  • icinga-idoutils-1.14.0-3.1 is installed
  • AND icinga-idoutils is signed with openSUSE key
  • OR
  • icinga-idoutils-mysql-1.14.0-3.1 is installed
  • AND icinga-idoutils-mysql is signed with openSUSE key
  • OR
  • icinga-idoutils-oracle-1.14.0-3.1 is installed
  • AND icinga-idoutils-oracle is signed with openSUSE key
  • OR
  • icinga-idoutils-pgsql-1.14.0-3.1 is installed
  • AND icinga-idoutils-pgsql is signed with openSUSE key
  • OR
  • icinga-plugins-downtimes-1.14.0-3.1 is installed
  • AND icinga-plugins-downtimes is signed with openSUSE key
  • OR
  • icinga-plugins-eventhandlers-1.14.0-3.1 is installed
  • AND icinga-plugins-eventhandlers is signed with openSUSE key
  • OR
  • icinga-www-1.14.0-3.1 is installed
  • AND icinga-www is signed with openSUSE key
  • OR
  • icinga-www-config-1.14.0-3.1 is installed
  • AND icinga-www-config is signed with openSUSE key
  • OR
  • monitoring-tools-1.14.0-3.1 is installed
  • AND monitoring-tools is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • icinga-1.14.0-4.1 is installed
  • AND icinga is signed with openSUSE key
  • OR
  • icinga-devel-1.14.0-4.1 is installed
  • AND icinga-devel is signed with openSUSE key
  • OR
  • icinga-doc-1.14.0-4.1 is installed
  • AND icinga-doc is signed with openSUSE key
  • OR
  • icinga-idoutils-1.14.0-4.1 is installed
  • AND icinga-idoutils is signed with openSUSE key
  • OR
  • icinga-idoutils-mysql-1.14.0-4.1 is installed
  • AND icinga-idoutils-mysql is signed with openSUSE key
  • OR
  • icinga-idoutils-oracle-1.14.0-4.1 is installed
  • AND icinga-idoutils-oracle is signed with openSUSE key
  • OR
  • icinga-idoutils-pgsql-1.14.0-4.1 is installed
  • AND icinga-idoutils-pgsql is signed with openSUSE key
  • OR
  • icinga-plugins-downtimes-1.14.0-4.1 is installed
  • AND icinga-plugins-downtimes is signed with openSUSE key
  • OR
  • icinga-plugins-eventhandlers-1.14.0-4.1 is installed
  • AND icinga-plugins-eventhandlers is signed with openSUSE key
  • OR
  • icinga-www-1.14.0-4.1 is installed
  • AND icinga-www is signed with openSUSE key
  • OR
  • icinga-www-config-1.14.0-4.1 is installed
  • AND icinga-www-config is signed with openSUSE key
  • OR
  • monitoring-tools-1.14.0-4.1 is installed
  • AND monitoring-tools is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • monitoring-tools-1.14.0-7 is installed
  • AND monitoring-tools is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • nagios-4.4.6-2.5 is installed
  • OR nagios-contrib-4.4.6-2.5 is installed
  • OR nagios-devel-4.4.6-2.5 is installed
  • OR nagios-theme-exfoliation-4.4.6-2.5 is installed
  • OR nagios-www-4.4.6-2.5 is installed
  • OR nagios-www-dch-4.4.6-2.5 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • nagios-4.4.6-bp151.4.6.1 is installed
  • OR nagios-contrib-4.4.6-bp151.4.6.1 is installed
  • OR nagios-devel-4.4.6-bp151.4.6.1 is installed
  • OR nagios-theme-exfoliation-4.4.6-bp151.4.6.1 is installed
  • OR nagios-www-4.4.6-bp151.4.6.1 is installed
  • OR nagios-www-dch-4.4.6-bp151.4.6.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP3 is installed
  • AND nagios is affected
    • BACK