[Pkg-nagios-devel] Bug#771466: CVE-2013-7108 CVE-2013-7205
Moritz Muehlenhoff
jmm at debian.org
Sat Nov 29 22:14:44 UTC 2014
Package: nagios3
Severity: grave
Tags: security
Hi,
there are a few older Nagios security vulnerabilities which are still
open in the jessie version. Could you check with upstream on their
status?
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7108
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7205
The proposed upstream fix isn't yet present in 3.5.1:
http://sourceforge.net/p/nagios/nagioscore/ci/d97e03f32741a7d851826b03ed73ff4c9612a866/
Cheers,
Moritz
More information about the Pkg-nagios-devel
mailing list