Ubuntu
nagios3 package

  1. Bug #1106109
  2. Activity log

Activity log for bug #1106109

Date Who What changed Old value New value Message
2013-01-26 15:21:53 Juan Gonzalez bug added bug
2013-01-26 15:23:00 Juan Gonzalez description I did not confirm this bug myself, I just wanted to relay the information. There is a buffer overflow bug that allows code execution in the CGI code of all nagios versions before the current (3.4.4). Nagios' changelog indicating the bug has been fixed in the latest version: http://www.nagios.org/projects/nagioscore/history/core-3x NVD Info: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6096 I did not confirm this bug myself, I just wanted to relay the information. There is a buffer overflow bug that allows code execution in the CGI code in all nagios versions before the current (3.4.4). Nagios' changelog indicating the bug has been fixed in the latest version: http://www.nagios.org/projects/nagioscore/history/core-3x NVD Info: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6096
2013-01-26 15:23:43 Juan Gonzalez cve linked 2012-6096
2013-01-26 15:43:10 Juan Gonzalez information type Private Security Public Security
2013-01-29 08:57:14 Yolanda Robla nagios3 (Ubuntu): status New Confirmed
2013-01-29 08:57:25 Yolanda Robla nagios3 (Ubuntu): importance Undecided Medium