Escalation Vulnerability

This forum is intended for the discussion of Nagios Core development. Feature requests, patches, bug fixes, and all types of development-related discussions are welcome!

NOTE: The SourceForge.net nagios-devel mailing list has been deprecated in favor of this forum in order to expedite support and provide additional features not available on the old mailing list.

Escalation Vulnerability

Postby Nollins » Wed May 09, 2018 5:19 am

Hello

This maybe something that cannot be resolved but I thought I would check - we have a Qualys scanner and it flagged an issue with Nagios Core 4.3.4

QID- 370766
Nagios Core Local Privilege Escalation Vulnerability.

Nagios Core initially executes /usr/sbin/nagios as root but supports configuration options in which this file is owned by a non-root account (and similarly can have nagios.cfg owned by a non-root account), which allows local users to gain privileges by leveraging access to this non-root account.

It states no fixes are available but thought I would check

Thank you

Chris
Nollins
 
Posts: 4
Joined: Mon Jul 18, 2016 3:13 am

Re: Escalation Vulnerability

Postby tmcdonald » Wed May 09, 2018 11:42 am

The latest release is 4.3.4 so there is not a published fix available. When it is, the changelog will reflect it here: https://github.com/NagiosEnterprises/na ... /Changelog
Former Nagios employee
tmcdonald
 
Posts: 9118
Joined: Mon Sep 23, 2013 8:40 am

Re: Escalation Vulnerability

Postby Nollins » Thu May 10, 2018 6:12 am

Thank you - do you know if this issue is resolved in Nagios XI
Nollins
 
Posts: 4
Joined: Mon Jul 18, 2016 3:13 am

Re: Escalation Vulnerability

Postby tmcdonald » Thu May 10, 2018 9:04 am

As Nagios XI runs Nagios Core under the hood, it would still be affected, yes.
Former Nagios employee
tmcdonald
 
Posts: 9118
Joined: Mon Sep 23, 2013 8:40 am


Return to Nagios Core Development

Who is online

Users browsing this forum: No registered users and 3 guests