My IT Security department is asking what the offical stance is for this CVE. We are unable to move forward with our switch to Nagios at this time due to this vulnerability.
https://nvd.nist.gov/vuln/detail/CVE-2018-13458
Local Denial of Service CVE-2018-13457
-
scottwilkerson
- DevOps Engineer
- Posts: 19396
- Joined: Tue Nov 15, 2011 3:11 pm
- Location: Nagios Enterprises
- Contact:
Re: Local Denial of Service CVE-2018-13457
This is fixed in the maint branch of Nagios and is undergoing final testing
https://github.com/NagiosEnterprises/na ... tree/maint
https://github.com/NagiosEnterprises/na ... tree/maint
Re: Local Denial of Service CVE-2018-13457
So that will push it to the new version of Nagios Core. Good.
Will it be included in an upcoming version of Nagios XI?
Will it be included in an upcoming version of Nagios XI?
-
scottwilkerson
- DevOps Engineer
- Posts: 19396
- Joined: Tue Nov 15, 2011 3:11 pm
- Location: Nagios Enterprises
- Contact:
Re: Local Denial of Service CVE-2018-13457
yes and yeshbouma wrote:So that will push it to the new version of Nagios Core. Good.
Will it be included in an upcoming version of Nagios XI?
Re: Local Denial of Service CVE-2018-13457
Thank you. That is all I needed.
-
scottwilkerson
- DevOps Engineer
- Posts: 19396
- Joined: Tue Nov 15, 2011 3:11 pm
- Location: Nagios Enterprises
- Contact:
Re: Local Denial of Service CVE-2018-13457
Closinghbouma wrote:Thank you. That is all I needed.