Accepted nagios 2:1.3-cvs.20050402-8ubuntu7 (source)
Martin Pitt
martin.pitt at ubuntu.com
Tue May 23 12:50:07 BST 2006
Accepted:
OK: nagios_1.3-cvs.20050402-8ubuntu7.dsc
-> Component: main Section: net
OK: nagios_1.3-cvs.20050402-8ubuntu7.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 23 May 2006 13:06:56 +0200
Source: nagios
Binary: nagios-pgsql nagios-text nagios-mysql nagios-common
Architecture: source
Version: 2:1.3-cvs.20050402-8ubuntu7
Distribution: dapper
Urgency: low
Maintainer: Debian Nagios Maintainer Group <pkg-nagios-devel at lists.alioth.debian.org>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description:
nagios-common - A host/service/network monitoring and management system
nagios-mysql - A host/service/network monitoring and management system
nagios-pgsql - A host/service/network monitoring and management system
nagios-text - A host/service/network monitoring and management system
Changes:
nagios (2:1.3-cvs.20050402-8ubuntu7) dapper; urgency=low
.
* SECURITY UPDATE: Remote arbitrary code execution with web servers that do
not check for bogus Content-Length headers (Apache 2 does).
* debian/patches/14_getcgi-negative-content-length.dpatch:
- Check for invalid large Content-Length values, too.
- Abort with a proper error message on invalid Content-Length values
instead of silently correcting it to 0.
* CVE-2006-2489
Files:
daaf62cacb4cb78eeb150751def65e06 953 net optional nagios_1.3-cvs.20050402-8ubuntu7.dsc
2c72439f022bdb44930a350c4291b726 71739 net optional nagios_1.3-cvs.20050402-8ubuntu7.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
iD8DBQFEcu1oDecnbV4Fd/IRAgwaAJ4k2PNrTr1gQyA/Y477fPIF4k4p9gCfeqBc
ASDOeC6Q2zzPGuMt0KA9poI=
=iDlx
-----END PGP SIGNATURE-----
More information about the dapper-changes
mailing list