Page 1 of 1
Local Denial of Service CVE-2018-13457
Posted: Thu Aug 02, 2018 8:31 am
by hbouma
My IT Security department is asking what the offical stance is for this CVE. We are unable to move forward with our switch to Nagios at this time due to this vulnerability.
https://nvd.nist.gov/vuln/detail/CVE-2018-13458
Re: Local Denial of Service CVE-2018-13457
Posted: Thu Aug 02, 2018 9:11 am
by scottwilkerson
This is fixed in the maint branch of Nagios and is undergoing final testing
https://github.com/NagiosEnterprises/na ... tree/maint
Re: Local Denial of Service CVE-2018-13457
Posted: Thu Aug 02, 2018 9:15 am
by hbouma
So that will push it to the new version of Nagios Core. Good.
Will it be included in an upcoming version of Nagios XI?
Re: Local Denial of Service CVE-2018-13457
Posted: Thu Aug 02, 2018 9:56 am
by scottwilkerson
hbouma wrote:So that will push it to the new version of Nagios Core. Good.
Will it be included in an upcoming version of Nagios XI?
yes and yes
Re: Local Denial of Service CVE-2018-13457
Posted: Thu Aug 02, 2018 10:02 am
by hbouma
Thank you. That is all I needed.
Re: Local Denial of Service CVE-2018-13457
Posted: Thu Aug 02, 2018 10:28 am
by scottwilkerson
hbouma wrote:Thank you. That is all I needed.
Closing