[SECURITY] Fedora 10 Update: nagios-3.0.5-1.fc10

updates at fedoraproject.org updates at fedoraproject.org
Wed Nov 26 06:19:44 UTC 2008


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-10323
2008-11-26 04:12:39
--------------------------------------------------------------------------------

Name        : nagios
Product     : Fedora 10
Version     : 3.0.5
Release     : 1.fc10
URL         : http://www.nagios.org/
Summary     : Nagios monitors hosts and services and yells if somethings breaks
Description :
Nagios is a program that will monitor hosts and services on your
network.  It has the ability to send email or page alerts when a
problem arises and when a problem is resolved.  Nagios is written
in C and is designed to run under Linux (and some other *NIX
variants) as a background process, intermittently running checks
on various services that you specify.

The actual service checks are performed by separate "plugin" programs
which return the status of the checks to Nagios. The plugins are
available at http://sourceforge.net/projects/nagiosplug.

This package provides the core program, web interface, and documentation
files for Nagios. Development files are built as a separate package.

--------------------------------------------------------------------------------
Update Information:

Upstream has released a new version:        * Security fix for Cross Site
Request Forgery (CSRF) bug reported by Tim Starling.      * Sample audio files
for CGIs removed from distribution      * Fix for mutliline config file
continuation bug      * Minor fix to RPM spec file      * Fix for AIX compiler
warnings      * Minor sample config file fix      * Added documentation on CGI
security issues
--------------------------------------------------------------------------------
ChangeLog:

* Mon Nov 24 2008 Mike McGrath <mmcgrath at redhat.com> 3.0.5-1
- Upstream released a new version
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #470840 - CVE-2008-5027 nagios: authorization bypass via custom form or browser addon
        https://bugzilla.redhat.com/show_bug.cgi?id=470840
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update nagios' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------




More information about the Fedora-package-announce mailing list