Accepted nagios-plugins 1.4.8-2.1ubuntu1.1 (source)

Mon, 22 Oct 2007 10:57:13 -0700 

Accepted:
 OK: nagios-plugins_1.4.8.orig.tar.gz
 OK: nagios-plugins_1.4.8-2.1ubuntu1.1.diff.gz
 OK: nagios-plugins_1.4.8-2.1ubuntu1.1.dsc
     -> Component: universe Section: net

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 18 Oct 2007 14:10:13 +0000
Source: nagios-plugins
Binary: nagios-plugins nagios-plugins-basic nagios-plugins-standard
Architecture: source
Version: 1.4.8-2.1ubuntu1.1
Distribution: gutsy-security
Urgency: low
Maintainer: Jamie Strandboge <[EMAIL PROTECTED]>
Changed-By: Jamie Strandboge <[EMAIL PROTECTED]>
Description: 
 nagios-plugins - Plugins for the nagios network monitoring and management 
system
 nagios-plugins-basic - Plugins for the nagios network monitoring and 
management system
 nagios-plugins-standard - Plugins for the nagios network monitoring and 
management system
Launchpad-Bugs-Fixed: 152624 153697 153703
Changes: 
 nagios-plugins (1.4.8-2.1ubuntu1.1) gutsy-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via multiple HTTPS redirects
   * debian/patches/29_SECURITY_LP153697.dpatch: set SSL context and SSL
     connection to NULL in np_net_ssl_cleanup()
   * SECURITY UPDATE: denial of service via multiple redirects
   * debian/patches/30_SECURITY_LP153703.dpatch: fix off-by-one error to
     re-allocate the proper amount of memory in redir()
   * SECURITY UPDATE: denial of service and possible arbitrary code execution
     as the user in check_http.c via crafted Location Header
   * debian/patches/CVE-2007-5198.dpatch: previous patch was not complete.
     Patch now reworked to properly validate Location header in redir().
   * References
     LP: #153697
     LP: #153703
     CVE-2007-5198
     LP: #152624
Files: 
 ba0227dcc99b2dd89d4064eea99a1145 1077 net extra 
nagios-plugins_1.4.8-2.1ubuntu1.1.dsc
 57f952ea930c536f1fe8c2e0946f9990 29184 net extra 
nagios-plugins_1.4.8-2.1ubuntu1.1.diff.gz
Original-Maintainer: Debian Nagios Maintainer Group <[EMAIL PROTECTED]>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHF8RGH/9LqRcGPm0RAtCCAJ9h0qcoPgn14jMUV2yNCcgeija2hgCgngV9
fntu3SRoe8t7GL51ZkG7Z+U=
=gM5b
-----END PGP SIGNATURE-----



-- 
gutsy-changes mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/gutsy-changes

Reply via email to