[ubuntu/natty-security] nagios3_3.2.3-1ubuntu1.2_powerpc_translations.tar.gz, nagios3_3.2.3-1ubuntu1.2_armel_translations.tar.gz, nagios3_3.2.3-1ubuntu1.2_amd64_translations.tar.gz, nagios3_3.2.3-1ubuntu1.2_i386_translations.tar.gz, nagios3 3.2.3-1ubuntu1.2 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Wed Jun 15 18:03:18 UTC 2011


nagios3 (3.2.3-1ubuntu1.2) natty-security; urgency=low

  * SECURITY UPDATE: Cross-site scripting in layer url
    - debian/patches/96_security_CVE-2011-1523.dpatch: use escape_string
      on layer name in cgi/statusmap.c.
    - CVE-2011-1523
  * SECURITY UPDATE: Cross-site scripting in config.cgi
    - debian/patches/97_security_CVE-2011-2179.dpatch: escape config
      expander arguments in cgi/config.c.
    - CVE-2011-2179

Date: Tue, 07 Jun 2011 08:27:46 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/nagios3/3.2.3-1ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Tue, 07 Jun 2011 08:27:46 -0400
Source: nagios3
Binary: nagios3-common nagios3-cgi nagios3 nagios3-core nagios3-doc nagios3-dbg
Architecture: source
Version: 3.2.3-1ubuntu1.2
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 nagios3    - A host/service/network monitoring and management system
 nagios3-cgi - cgi files for nagios3
 nagios3-common - support files for nagios3
 nagios3-core - A host/service/network monitoring and management system core file
 nagios3-dbg - debugging symbols and debug stuff for nagios3
 nagios3-doc - documentation for nagios3
Changes: 
 nagios3 (3.2.3-1ubuntu1.2) natty-security; urgency=low
 .
   * SECURITY UPDATE: Cross-site scripting in layer url
     - debian/patches/96_security_CVE-2011-1523.dpatch: use escape_string
       on layer name in cgi/statusmap.c.
     - CVE-2011-1523
   * SECURITY UPDATE: Cross-site scripting in config.cgi
     - debian/patches/97_security_CVE-2011-2179.dpatch: escape config
       expander arguments in cgi/config.c.
     - CVE-2011-2179
Checksums-Sha1: 
 8ecb1ee06efbd0271a26a797128eb2d5306b1d4e 2253 nagios3_3.2.3-1ubuntu1.2.dsc
 a120477565a07e4ad7286b9ef42da41ed79ec2f3 43994 nagios3_3.2.3-1ubuntu1.2.diff.gz
Checksums-Sha256: 
 222c2235d144ace955edbec9da59bded6f2f17f9e613a1b7b85d92b67d8bc975 2253 nagios3_3.2.3-1ubuntu1.2.dsc
 e98244edf616d6d13fc4bf11efe0b5a268e42ec85ce233ad315d87ad1ffba5b8 43994 nagios3_3.2.3-1ubuntu1.2.diff.gz
Files: 
 22f4f684d9e5a1436740e32f038b7b93 2253 net optional nagios3_3.2.3-1ubuntu1.2.dsc
 85e32ee3b8ee7112fde865323a1250d2 43994 net optional nagios3_3.2.3-1ubuntu1.2.diff.gz
Original-Maintainer: Debian Nagios Maintainer Group <pkg-nagios-devel at lists.alioth.debian.org>


More information about the Natty-changes mailing list