Oval Definition:	oval:org.opensuse.security:def:74805
Revision Date: 2020-12-01 Version: 1 Title: Security update for nagios (Moderate) Description: This update for nagios to version 4.4.5 fixes the following issues: - CVE-2019-3698: Symbolic link following vulnerability in the cronjob allows local attackers to cause cause DoS or potentially escalate privileges. (boo#1156309) - CVE-2018-18245: Fixed XSS vulnerability in Alert Summary report (boo#1119832) - CVE-2018-13441, CVE-2018-13458, CVE-2018-13457: Fixed a few denial of service vulnerabilities caused by null pointer dereference (boo#1101293, boo#1101289, boo#1101290). Family: unix Class: patch Status: Reference(s): 1028975 1119832 1156309 1172643 CVE-2018-13441 CVE-2018-13457 CVE-2018-13458 CVE-2018-18245 CVE-2019-3698 CVE-2020-10759 openSUSE-SU-2020:0500-1 openSUSE-SU-2020:0849-1 Platform(s): openSUSE Leap 15.1 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information nagios-4.4.5-lp151.5.4 is installed OR nagios-contrib-4.4.5-lp151.5.4 is installed OR nagios-devel-4.4.5-lp151.5.4 is installed OR nagios-theme-exfoliation-4.4.5-lp151.5.4 is installed OR nagios-www-4.4.5-lp151.5.4 is installed OR nagios-www-dch-4.4.5-lp151.5.4 is installed
BACK