[Bug 301542] Re: Bypass auth checks in Nagios (CVE-2008-5027, CVE-2008-5028)
Launchpad Bug Tracker
301542 at bugs.launchpad.net
Thu Dec 18 15:05:06 GMT 2008
This bug was fixed in the package nagios3 - 3.0.6-1ubuntu1
---------------
nagios3 (3.0.6-1ubuntu1) jaunty; urgency=low
* Merge from debian unstable, remaining changes:
+ debian/nagios3-common.prerm:
- Purge fails if /etc/nagios3/apache2.conf is missing.
+ Update maintainer according to spec.
* Closes LP: #301542
* Merge done by Bhavani Shankar, thanks (LP: #308434)
nagios3 (3.0.6-1) unstable; urgency=high
* New upstream version
- Even more fixes for CVE-2008-5028
* Urgency high for security fixes
* Add ${shlibs:Depends} (Fixes lintian error, as the epn debugger
should depend on libc)
* Add ${misc:Depends} to binaries (Fixes lintian warning)
nagios3 (3.0.5-1) unstable; urgency=low
[ Christian Perrier ]
* Fix pending l10n issues. Debconf translations:
- Italian. Closes: #505813
- Polish. Closes: #506851
[ Alexander Wirt ]
* New upstream version
- Adds security fix for cmd.cgi (Closes: #504894)
This security problem is referenced as CVE-2008-5028 and SA32610
-- Chuck Short <zulcss at ubuntu.com> Mon, 08 Dec 2008 10:51:56 +0000
** Changed in: nagios3 (Ubuntu)
Status: New => Fix Released
--
Bypass auth checks in Nagios (CVE-2008-5027, CVE-2008-5028)
https://bugs.launchpad.net/bugs/301542
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nagios3 in ubuntu.
More information about the Ubuntu-server-bugs
mailing list