Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 133487 - net-analyzer/nagios (<1.4.1, <2.3.1) : HTTP content_length header integer overflow in CGIs
Summary: net-analyzer/nagios (<1.4.1, <2.3.1) : HTTP content_length header integer ove...
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High major (vote)
Assignee: Gentoo Security
Whiteboard: B1 [glsa]
Depends on:
Reported: 2006-05-16 06:41 UTC by Raphael Marichez (Falco) (RETIRED)
Modified: 2006-05-16 15:08 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Raphael Marichez (Falco) (RETIRED) gentoo-dev 2006-05-16 06:41:36 UTC
1.4.1 - 05/15/2006

    * Bug fix for HTTP content_length header integer overflow in CGIs 

SA-20123 :
A vulnerability has been reported in Nagios, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

The vulnerability is caused due to an integer overflow error within the handling of the "Content-Length" HTTP header. This can be exploited to cause a buffer overflow and may allow arbitrary code execute via a HTTP request with specially crafted value in the "Content-Length" HTTP header.

The vulnerability has been reported in the 1.x and 2.x code branches.

Update to the fixed versions.

Nagios 1.x:
Update to version 1.4.1.

Nagios 2.x:
Update to version 2.3.1.
Comment 1 Raphael Marichez (Falco) (RETIRED) gentoo-dev 2006-05-16 06:44:55 UTC
Advisory is out today.
Trying to break the record of the fastest GLSA :)  Thanks to Ramereth who has already commited nagios-1.4.1
Comment 2 Lance Albertson (RETIRED) gentoo-dev 2006-05-16 06:48:08 UTC
I also committed 2.3.1 but both are set as ~arch to ensure no breakage. I didn't get a chance to test it on a working nagios config yet, so I'd like to wait till either someone tests that or we give it a day or so. I don't like breaking people's monitoring system :). 
Comment 3 Chris Gianelloni (RETIRED) gentoo-dev 2006-05-16 08:09:00 UTC
Stable on x86 (2 separate systems)... =]
Comment 4 Gustavo Zacarias (RETIRED) gentoo-dev 2006-05-16 12:44:33 UTC
sparc stable.
Comment 5 Markus Rothe (RETIRED) gentoo-dev 2006-05-16 12:50:34 UTC
nagios 1.4.1 stable on ppc64
Comment 6 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2006-05-16 13:07:58 UTC
This one is ready for GLSA. This looks like an errata to GLSA 200605-07.
Comment 7 Stefan Cornelius (RETIRED) gentoo-dev 2006-05-16 13:37:18 UTC
yeah, if it was incompletely fixed the first time, we should have an errata here
Comment 8 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2006-05-16 15:06:26 UTC
GLSA 200605-07:02
Comment 9 Raphael Marichez (Falco) (RETIRED) gentoo-dev 2006-05-16 15:08:40 UTC
TTL : 8h25m

thanks to Jaervosz, ramereth and arches :)