[Pkg-nagios-devel] Bug#771466: CVE-2013-7108 CVE-2013-7205

Moritz Muehlenhoff jmm at debian.org
Sat Nov 29 22:14:44 UTC 2014


Package: nagios3
Severity: grave
Tags: security

Hi,
there are a few older Nagios security vulnerabilities which are still
open in the jessie version. Could you check with upstream on their
status?

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7108
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7205

The proposed upstream fix isn't yet present in 3.5.1:
http://sourceforge.net/p/nagios/nagioscore/ci/d97e03f32741a7d851826b03ed73ff4c9612a866/

Cheers,
        Moritz



More information about the Pkg-nagios-devel mailing list