|
|
Subscribe / Log in / New account

Fedora alert FEDORA-2008-10323 (nagios)



From:
    	      updates@fedoraproject.org


To:
    	      fedora-package-announce@redhat.com


Subject:
    	      [SECURITY] Fedora 10 Update: nagios-3.0.5-1.fc10


Date:
    	      Wed, 26 Nov 2008 06:19:44 +0000


Message-ID:
    	      <20081126061944.2F94C208DB7@bastion.fedora.phx.redhat.com>


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-10323
2008-11-26 04:12:39
--------------------------------------------------------------------------------

Name        : nagios
Product     : Fedora 10
Version     : 3.0.5
Release     : 1.fc10
URL         : http://www.nagios.org/
Summary     : Nagios monitors hosts and services and yells if somethings breaks
Description :
Nagios is a program that will monitor hosts and services on your
network.  It has the ability to send email or page alerts when a
problem arises and when a problem is resolved.  Nagios is written
in C and is designed to run under Linux (and some other *NIX
variants) as a background process, intermittently running checks
on various services that you specify.

The actual service checks are performed by separate "plugin" programs
which return the status of the checks to Nagios. The plugins are
available at http://sourceforge.net/projects/nagiosplug.

This package provides the core program, web interface, and documentation
files for Nagios. Development files are built as a separate package.

--------------------------------------------------------------------------------
Update Information:

Upstream has released a new version:        * Security fix for Cross Site
Request Forgery (CSRF) bug reported by Tim Starling.      * Sample audio files
for CGIs removed from distribution      * Fix for mutliline config file
continuation bug      * Minor fix to RPM spec file      * Fix for AIX compiler
warnings      * Minor sample config file fix      * Added documentation on CGI
security issues
--------------------------------------------------------------------------------
ChangeLog:

* Mon Nov 24 2008 Mike McGrath <mmcgrath@redhat.com> 3.0.5-1
- Upstream released a new version
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #470840 - CVE-2008-5027 nagios: authorization bypass via custom form or browser addon
        https://bugzilla.redhat.com/show_bug.cgi?id=470840
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update nagios' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-ann...
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds