1
PublicDateAtUSN: 2014-02-28
2
Candidate: CVE-2014-1878
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1878
6
https://www.icinga.org/2014/02/11/bugfix-releases-1-10-3-1-9-5-1-8-6
7
http://secunia.com/advisories/57024
8
https://usn.ubuntu.com/usn/usn-3253-1
10
Stack-based buffer overflow in the cmd_submitf function in cgi/cmd.c in
11
Nagios Core, possibly 4.0.3rc1 and earlier, and Icinga before 1.8.6, 1.9
12
before 1.9.5, and 1.10 before 1.10.3 allows remote attackers to cause a
13
denial of service (segmentation fault) via a long message to cmd.cgi.
17
https://dev.icinga.org/issues/5434
18
https://bugzilla.redhat.com/show_bug.cgi?id=1066578
19
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=823721
25
Tags_nagios3: fortify-source
26
upstream_nagios3: needs-triage
27
lucid_nagios3: ignored (reached end-of-life)
28
precise_nagios3: ignored (reached end-of-life)
29
precise/esm_nagios3: DNE (precise was needed)
30
quantal_nagios3: ignored (reached end-of-life)
31
saucy_nagios3: ignored (reached end-of-life)
32
trusty_nagios3: released (3.5.1-1ubuntu1.1)
33
utopic_nagios3: ignored (reached end-of-life)
34
vivid_nagios3: ignored (reached end-of-life)
35
vivid/stable-phone-overlay_nagios3: DNE
36
vivid/ubuntu-core_nagios3: DNE
37
wily_nagios3: ignored (reached end-of-life)
38
xenial_nagios3: released (3.5.1.dfsg-2.1ubuntu1.1)
39
yakkety_nagios3: released (3.5.1.dfsg-2.1ubuntu3.1)
40
zesty_nagios3: released (3.5.1.dfsg-2.1ubuntu5)
41
devel_nagios3: released (3.5.1.dfsg-2.1ubuntu5)
44
upstream: https://dev.icinga.org/projects/icinga-core/repository/revisions/eedf4f7d88cdc50843572224eb38a2f5c78a2dc5
45
Tags_icinga: fortify-source
46
upstream_icinga: released (1.10.3-1)
48
precise_icinga: ignored (reached end-of-life)
49
precise/esm_icinga: DNE (precise was needed)
50
quantal_icinga: ignored (reached end-of-life)
51
saucy_icinga: ignored (reached end-of-life)
52
trusty_icinga: not-affected (1.10.3)
53
utopic_icinga: not-affected (1.10.3)
54
vivid_icinga: not-affected (1.10.3)
55
vivid/stable-phone-overlay_icinga: DNE
56
vivid/ubuntu-core_icinga: DNE
57
wily_icinga: not-affected (1.10.3)
58
xenial_icinga: not-affected (1.10.3)
59
yakkety_icinga: not-affected (1.10.3)
60
zesty_icinga: not-affected (1.10.3)
61
devel_icinga: not-affected (1.10.3)