[icinga-users] Icinga 1.4.1 released

Wed, 08 Jun 2011 02:26:06 -0700

Icinga 1.4.0 <https://www.icinga.org/2011/05/11/icinga-v1-4-released/> contained several bugs which now have been fixed on the core and web side of development :-)
The XSS vulnerability <http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/80502?do=post_view_threaded> in the Classic UI reported by Stefan Schurtz has been resolved too. Download <https://sourceforge.net/projects/icinga/files/> Icinga 1.4.1 now! 

*Core/ClassicUI/IDOUtils*


* core: fix retain status file over an init script reload #1579 
<https://dev.icinga.org/issues/1579>



* classic ui: fix cross site scripting vulnerability in config.cgi on 
config expander arguments #1605 <https://dev.icinga.org/issues/1605>
* classic ui: better handling of writing to cgi.log in cmd.cgi #1161 
<https://dev.icinga.org/issues/1161>
* classic ui: fixing tac.cgi header problems with counting and adding 
pending and descritptions #1505 <https://dev.icinga.org/issues/1505> 
#1506 <https://dev.icinga.org/issues/1506> #1508 
<https://dev.icinga.org/issues/1508>
* classic ui: corrected behaviour of pending states in tac header #1508 
<https://dev.icinga.org/issues/1508>



* install: fix event handlers cmd file location in contrib #1501 
<https://dev.icinga.org/issues/1501>


*Web/API*


* fix LDAP auth allows empty passwords #1596 
<https://dev.icinga.org/issues/1596>
* fix ilter information wrong after saving cronk #1525 
<https://dev.icinga.org/issues/1525>
* fix prefs growing endlessly in Icinga-Web causing lot's of traffic 
#1513 <https://dev.icinga.org/issues/1513>

* fix cronks page make-up #1509 <https://dev.icinga.org/issues/1509>
* principals now work with wildcards
* provided IE JS fix

*Docs*

* CFLAGS for FreeBSD #1604 <https://dev.icinga.org/issues/1604>
* show_tac_header_pending #1529 <https://dev.icinga.org/issues/1529>


As usual -- please report any bugs/feature requests/etc to our 
development tracker <https://dev.icinga.org> and/or community channels 
<https://www.icinga.org/support/>! :-)


--
DI (FH) Michael Friedrich

Vienna University Computer Center
Universitaetsstrasse 7 A-1010 Vienna, Austria

email:  [email protected]
phone:  +43 1 4277 14359
mobile: +43 664 60277 14359
fax:    +43 1 4277 14338
web:    http://www.univie.ac.at/zid
        http://www.aco.net

Icinga Core&  IDOUtils Developer
http://www.icinga.org


------------------------------------------------------------------------------
EditLive Enterprise is the world's most technically advanced content
authoring tool. Experience the power of Track Changes, Inline Image
Editing and ensure content is compliant with Accessibility Checking.
http://p.sf.net/sfu/ephox-dev2dev
_______________________________________________
icinga-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/icinga-users














    











					Reply via email to