Accepted nagios-plugins 1.4.8-2.1ubuntu1.1 (source)

Ubuntu Installer archive at ubuntu.com
Mon Oct 22 18:56:11 BST 2007 

Accepted:
 OK: nagios-plugins_1.4.8.orig.tar.gz
 OK: nagios-plugins_1.4.8-2.1ubuntu1.1.diff.gz
 OK: nagios-plugins_1.4.8-2.1ubuntu1.1.dsc
     -> Component: universe Section: net

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 18 Oct 2007 14:10:13 +0000
Source: nagios-plugins
Binary: nagios-plugins nagios-plugins-basic nagios-plugins-standard
Architecture: source
Version: 1.4.8-2.1ubuntu1.1
Distribution: gutsy-security
Urgency: low
Maintainer: Jamie Strandboge <jamie at ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 nagios-plugins - Plugins for the nagios network monitoring and management system
 nagios-plugins-basic - Plugins for the nagios network monitoring and management system
 nagios-plugins-standard - Plugins for the nagios network monitoring and management system
Launchpad-Bugs-Fixed: 152624 153697 153703
Changes: 
 nagios-plugins (1.4.8-2.1ubuntu1.1) gutsy-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via multiple HTTPS redirects
   * debian/patches/29_SECURITY_LP153697.dpatch: set SSL context and SSL
     connection to NULL in np_net_ssl_cleanup()
   * SECURITY UPDATE: denial of service via multiple redirects
   * debian/patches/30_SECURITY_LP153703.dpatch: fix off-by-one error to
     re-allocate the proper amount of memory in redir()
   * SECURITY UPDATE: denial of service and possible arbitrary code execution
     as the user in check_http.c via crafted Location Header
   * debian/patches/CVE-2007-5198.dpatch: previous patch was not complete.
     Patch now reworked to properly validate Location header in redir().
   * References
     LP: #153697
     LP: #153703
     CVE-2007-5198
     LP: #152624
Files: 
 ba0227dcc99b2dd89d4064eea99a1145 1077 net extra nagios-plugins_1.4.8-2.1ubuntu1.1.dsc
 57f952ea930c536f1fe8c2e0946f9990 29184 net extra nagios-plugins_1.4.8-2.1ubuntu1.1.diff.gz
Original-Maintainer: Debian Nagios Maintainer Group <pkg-nagios-devel at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHF8RGH/9LqRcGPm0RAtCCAJ9h0qcoPgn14jMUV2yNCcgeija2hgCgngV9
fntu3SRoe8t7GL51ZkG7Z+U=
=gM5b
-----END PGP SIGNATURE-----

More information about the gutsy-changes mailing list