From bb3771c7bb0d99f43693ea36cf2002829f4d50bb Mon Sep 17 00:00:00 2001 From: Aldas Nabazas Date: Sat, 26 Apr 2008 19:32:29 +0200 Subject: [PATCH] [nagios-plugins] Updated (1.4.4 -> 1.4.11) : SECURITY - HIGH CVE-2007-5198 (Medium) : Buffer overflow in the redir function in check_http.c in Nagios Plugins before 1.4.10, when running with the -f (follow) option, allows remote web servers to execute arbitrary code via Location header responses (redirects) with a large number of leading "L" characters. CVE-2007-5623 (Medium) : Buffer overflow in the check_snmp function in Nagios Plugins (nagios-plugins) 1.4.10 allows remote attackers to cause a denial of service (crash) via crafted snmpget replies. --- monitor/nagios-plugins/nagios-plugins.desc | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/monitor/nagios-plugins/nagios-plugins.desc b/monitor/nagios-plugins/nagios-plugins.desc index 4b02b4034..24f054094 100644 --- a/monitor/nagios-plugins/nagios-plugins.desc +++ b/monitor/nagios-plugins/nagios-plugins.desc @@ -2,7 +2,7 @@ [COPY] This copyright note is auto-generated by ./scripts/Create-CopyPatch. [COPY] [COPY] Filename: package/.../nagios-plugins/nagios-plugins.desc -[COPY] Copyright (C) 2006 The OpenSDE Project +[COPY] Copyright (C) 2006 - 2008 The OpenSDE Project [COPY] Copyright (C) 2004 - 2006 The T2 SDE Project [COPY] [COPY] More information can be found in the files COPYING and README. @@ -12,6 +12,7 @@ [COPY] the Free Software Foundation; version 2 of the License. A copy of the [COPY] GNU General Public License can be found in the file COPYING. [COPY] --- SDE-COPYRIGHT-NOTE-END --- + [I] Plugins for Nagios host and service monitor [T] Nagios Plugins are scripts and programs that perform host and service checks. @@ -27,7 +28,7 @@ [L] OpenSource [S] Stable -[V] 1.4.4 +[V] 1.4.11 [P] X -----5---9 200.401 -[D] 4013687722 nagios-plugins-1.4.4.tar.gz http://dl.sourceforge.net/sourceforge/nagiosplug/ +[D] 886725157 nagios-plugins-1.4.11.tar.gz http://dl.sourceforge.net/sourceforge/nagiosplug/