-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6308-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 28, 2026 https://www.debian.org/security/faq - -------------------------------------------------------------------------
Package : nagios4 CVE ID : not yet available Debian Bug : 1136340 It was discovered that some of the CGI scripts of the Nagios monitoring system were susceptible to cross-site request forgery. For the oldstable distribution (bookworm), this problem has been fixed in version 4.4.6-4+deb12u1. For the stable distribution (trixie), this problem has been fixed in version 4.4.6-4.1+deb13u1. We recommend that you upgrade your nagios4 packages. For the detailed security status of nagios4 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/nagios4 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: [email protected] -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmoYqxgACgkQEMKTtsN8 TjaJEw//Tu+J1HGMnVJwJwh+hHBuO7kBzw/vDLWxDNVqcpK2+3JVoQALcZraqKyF VvteP/UxTtunWQ0HjcIyfwEyrQKGPK/je8PKfe6rEXXyPUc4l+JvW7BSyRhLCH6p riZXCh/LPIl7s0UT6MS6h9QUn7awrXgCxNeLfyMOOn4dhYUu8kLSMFEgXAhaPPwO QWuDlOQ0g2nMkVQmCchRhlRGygusMj9EkSp/1Uemr5P7328beuC6/bG2aM/AYOle D4+Kb1YHJ+dwtYahOA1V3yy7jToca3br93oyUQKTg4aB4ON7OPOmj42WPPAHazES k0wQK3P+785npHiadLrZGboewxt7JBrNIp07kEABhaWBoCoFvZVNQHGuVm+aOU+H Kr9Qn24XneMqWM2Y96CcTRAGnz167n6rAjt8bs9TFe70rP7VBshmAh8y56aQft9U ZiN+Efuq2zUtKi2nymmLeryuYUEIp8syLorxwCEeUcuAPJRBorO4OHxxvbDMW2ka s7nMFxd7EGlQ8gkQSQMTuz9TvPjwnXtV9lXNz+gNtS4TK5DK3iR47ToHqghdorb6 nnzj3oCUucQdvzDea1S4aUkSjRVUPtJQLDxOL4MgJD+aRrRvFMftHLT6j6TkkzEC hHe6QxTcysjsSaELfyiRlrrKLXG4OvdXxREgT/Wq81Cwb8ayVVQ= =hhy2 -----END PGP SIGNATURE-----

