Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 133487
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Raphael Marichez <falco@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 133487 depends on: Show dependency tree
Bug 133487 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2006-05-16 06:41 0000 
1.4.1 - 05/15/2006

    * Bug fix for HTTP content_length header integer overflow in CGIs 




SA-20123 :
Description:
A vulnerability has been reported in Nagios, which can be exploited by
malicious people to cause a DoS (Denial of Service) and potentially compromise
a vulnerable system.

The vulnerability is caused due to an integer overflow error within the
handling of the "Content-Length" HTTP header. This can be exploited to cause a
buffer overflow and may allow arbitrary code execute via a HTTP request with
specially crafted value in the "Content-Length" HTTP header.

The vulnerability has been reported in the 1.x and 2.x code branches.

Solution:
Update to the fixed versions.
http://www.nagios.org/download/

Nagios 1.x:
Update to version 1.4.1.

Nagios 2.x:
Update to version 2.3.1.

------- Comment #1 From Raphael Marichez 2006-05-16 06:44:55 0000 ------- 
Advisory is out today.
Trying to break the record of the fastest GLSA :)  Thanks to Ramereth who has
already commited nagios-1.4.1

------- Comment #2 From Lance Albertson 2006-05-16 06:48:08 0000 ------- 
I also committed 2.3.1 but both are set as ~arch to ensure no breakage. I
didn't get a chance to test it on a working nagios config yet, so I'd like to
wait till either someone tests that or we give it a day or so. I don't like
breaking people's monitoring system :).

------- Comment #3 From Chris Gianelloni (RETIRED) 2006-05-16 08:09:00 0000 ------- 
Stable on x86 (2 separate systems)... =]

------- Comment #4 From Gustavo Zacarias (RETIRED) 2006-05-16 12:44:33 0000 ------- 
sparc stable.

------- Comment #5 From Markus Rothe 2006-05-16 12:50:34 0000 ------- 
nagios 1.4.1 stable on ppc64

------- Comment #6 From Sune Kloppenborg Jeppesen 2006-05-16 13:07:58 0000 ------- 
This one is ready for GLSA. This looks like an errata to GLSA 200605-07.

http://nagios.cvs.sourceforge.net/nagios/nagios/cgi/getcgi.c?view=log

------- Comment #7 From Stefan Cornelius (RETIRED) 2006-05-16 13:37:18 0000 ------- 
yeah, if it was incompletely fixed the first time, we should have an errata
here

------- Comment #8 From Sune Kloppenborg Jeppesen 2006-05-16 15:06:26 0000 ------- 
GLSA 200605-07:02

------- Comment #9 From Raphael Marichez 2006-05-16 15:08:40 0000 ------- 
TTL : 8h25m

thanks to Jaervosz, ramereth and arches :)
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug