CVE- 2020-1408

Support forum for Nagios Core, Nagios Plugins, NCPA, NRPE, NSCA, NDOUtils and more. Engage with the community of users including those using the open source solutions.
Locked
anthonywong
Posts: 11
Joined: Mon Mar 04, 2019 8:17 am

CVE- 2020-1408

Post by anthonywong »

Hi Support,
May I know whether I can patch the above vulnerability of our existing nagios core 2.6.32 without upgrade to latest nagios core?

If not, please provide upgrade steps to perform.

Thanks and Regards,
Anthony
Top
benjaminsmith
Posts: 5324
Joined: Wed Aug 22, 2018 4:39 pm
Location: saint paul

Re: CVE- 2020-1408

Post by benjaminsmith »

Hi Anthony,

It looks like just a few updates to some javascript/html files:

GitHub Pull Request
https://github.com/NagiosEnterprises/na ... /756/files

We haven't tested that here so I would recommend making backups of those files, and then apply the changes.

If you decide to upgrade, here's a link to the documentation for upgrading Nagios Core..
https://assets.nagios.com/downloads/nag ... ading.html
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.

Be sure to check out our Knowledgebase for helpful articles and solutions!
Top
anthonywong
Posts: 11
Joined: Mon Mar 04, 2019 8:17 am

Re: CVE- 2020-1408

Post by anthonywong »

Hi Benjaminsmith,
Thanks for your support.

Regards,
Anthony
Top
benjaminsmith
Posts: 5324
Joined: Wed Aug 22, 2018 4:39 pm
Location: saint paul

Re: CVE- 2020-1408

Post by benjaminsmith »

Hi Anthony,

No problem!

Thanks for visiting the Nagios Community Forum.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.

Be sure to check out our Knowledgebase for helpful articles and solutions!
Top
Locked

Return to “Open Source Nagios Projects”