ports/136187: [PATCH]: net-mgmt/nagios update to address security vulnerability
Wesley Shields
wxs at FreeBSD.org
Tue Jun 30 15:10:03 UTC 2009
>Number: 136187
>Category: ports
>Synopsis: [PATCH]: net-mgmt/nagios update to address security vulnerability
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: update
>Submitter-Id: current-users
>Arrival-Date: Tue Jun 30 15:10:01 UTC 2009
>Closed-Date:
>Last-Modified:
>Originator: Wesley Shields
>Release: FreeBSD 7.1-RELEASE-p5 amd64
>Organization:
>Environment:
System: FreeBSD syn.csh.rit.edu 7.1-RELEASE-p5 FreeBSD 7.1-RELEASE-p5 #4: Thu Apr 23 13:36:41 EDT 2009 root at syn.csh.rit.edu:/usr/obj/usr/src/sys/GENERIC amd64
>Description:
net-mgmt/nagios has a command injection vulnerability. I took a quick
look at coming up with a patch in my limited time today but there are
some patching issues with the existing things in files/patch*. I want to
get this PR into the system so that the maintainer is aware of it and
can work on a solution as time permits.
The VuXML entry is available at:
http://www.vuxml.org/freebsd/3ebd4cb5-657f-11de-883a-00e0815b8da8.html
I've CC'ed the maintainer on this and will work with him to make sure an
updated version hits the tree when it's ready.
>How-To-Repeat:
N/A
>Fix:
N/A
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list