Source: nagios3 Version: 3.4.1-1 Severity: important Tags: security upstream
Hi, the following vulnerability was published for nagios3. CVE-2014-1878[0]: | Stack-based buffer overflow in the cmd_submitf function in cgi/cmd.c | in Nagios Core, possibly 4.0.3rc1 and earlier, and Icinga before | 1.8.6, 1.9 before 1.9.5, and 1.10 before 1.10.3 allows remote | attackers to cause a denial of service (segmentation fault) via a long | message to cmd.cgi. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2014-1878 Regards, Salvatore
