Bug 21546

Summary: nagios new security issue CVE-2017-12847
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Guillaume Rousse <guillomovitch>
Status: RESOLVED INVALID QA Contact: Sec team <security>
Severity: normal    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: MGA6TOO, MGA5TOO
Source RPM: nagios-4.3.1-2.mga6.src.rpm CVE:
Status comment:

Description David Walser 2017-08-17 03:19:37 CEST 
A security issue in nagios has been announced today (August 16):
http://openwall.com/lists/oss-security/2017/08/16/7

If this affects us, Mageia 5 and Mageia 6 are also affected.

The description of the issue specifically mentions the SysV init script, while we use a systemd service file, so I'm not 100% sure we're affected.
David Walser 2017-08-17 03:19:51 CEST

Whiteboard: (none) => MGA6TOO, MGA5TOO

Comment 1 David Walser 2017-08-18 22:50:49 CEST 
I think we're not affected.

Status: NEW => RESOLVED
Resolution: (none) => INVALID