oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Some Nagios /tmp vulns (no reply from upstream)

From: Kurt Seifried <kseifried () redhat com>
Date: Wed, 07 Aug 2013 19:47:08 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

No reply from upstream, these are both non critical so making public.
Does anyone know the best way to contact Nagios upstream for security
issues?

Nagios:
https://bugzilla.redhat.com/show_bug.cgi?id=958002
http://tracker.nagios.org/view.php?id=450
Please use CVE-2013-4214 for this issue.

Nagios-plugins:
https://bugzilla.redhat.com/show_bug.cgi?id=957482
http://tracker.nagios.org/view.php?id=451
Please use CVE-2013-4215 for this issue.

Both reported by Grant Murhphy (gmurphy () redhat com) of Red Hat.


- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)

iQIcBAEBAgAGBQJSAvibAAoJEBYNRVNeJnmTE5wP/0Lyp7Uv28hTqJ9fY13iG3vj
/XgpPKkjeFYdlO7q9Ih/hO93kYdT45pi5QsUI1/MRYvDXI9JT6Box4AApibh5BCf
bV8uF2egq5Gtrpa6mV2OBMAEkaLwAlT5Nigps0uIljCZwYKrpTDGjR0w4NFfUtuK
HXQ9VwxcR3RIG4wduDDsbi/c/anyuxDhP0u5lMrV7D74CoHQxsMJ25kEWF6NSSF1
kMwu0bSKZpxMv8wKvDOjK59ZBPlJl0fijV0C6NQ4xSzlz+8PpKTD76JKcViTzOZq
DBELZFDoNogTLxPkg/KyVyJXL1AIpjvnwiUdKFv436z8qlD2XQ8dBUI5+dpQekRT
OPJY+EypfBhGehao/trsVw6/DY3lszalff45//q39B2oAVehCvT9vTy8XdiMPPuS
Z2ixqF4wQnFnO0VNYRlZRD0121zUZRMAkSnzJFVuBCy2J6GnUT8wfhhSu0X+XQ3+
7EGy/dUi5fCUQvcOmmLIibz6+HE3f0FH+53rkfudGoRxTLNuOIOjhk2UfhtKtCKC
R2WaZAfkOVKvTI9o6a96dRmOhQ3bgYyVn8/hiLxHv+zDof1Fk6GeCo+ZIBCmrp6i
SoZ+1bfhKeDCdwwMewr75RGOVJzsyyDcx5UqKQhxmYqlWRIbSIxiZsE8dIj0dA14
lwesnGNadux3ZA6WXX0Z
=ffI4
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: