[pnp4nagios/el6] CVE-2012-3457

[Ján ONDREJ]

commit c734c44a62a8d4c2e038dc8bbadb93e684ce8e35
Author: Jan ONDREJ (SAL) <ondrejj(at)salstar.sk>
Date:   Mon Sep 3 09:24:33 2012 +0200

    CVE-2012-3457

 pnp4nagios.spec |    6 +++++-
 1 files changed, 5 insertions(+), 1 deletions(-)
---
diff --git a/pnp4nagios.spec b/pnp4nagios.spec
index f21e983..71d2c0b 100644
--- a/pnp4nagios.spec
+++ b/pnp4nagios.spec
@@ -1,6 +1,6 @@
 Name:           pnp4nagios
 Version:        0.6.16
-Release:        2%{?dist}
+Release:        4%{?dist}
 Summary:        Nagios performance data analysis tool
 
 Group:          Applications/System
@@ -116,6 +116,7 @@ fi
 %doc AUTHORS ChangeLog COPYING INSTALL README README.fedora
 %doc THANKS contrib/
 %dir %{_sysconfdir}/pnp4nagios
+%config(noreplace) %attr(0640,root,nagios) %{_sysconfdir}/pnp4nagios/process_perfdata.cfg
 %config(noreplace) %{_sysconfdir}/pnp4nagios/*
 %config(noreplace) %{_sysconfdir}/logrotate.d/%{name}
 %config(noreplace) %{_sysconfdir}/httpd/conf.d/%{name}.conf
@@ -137,6 +138,9 @@ fi
 %{_datadir}/nagios/html/%{name}/kohana
 
 %changelog
+* Mon Sep 03 2012 Ján ONDREJ (SAL) <ondrejj(at)salstar.sk> - 0.6.16-4
+- CVE-2012-3457 - process_perfdata.cfg world readable
+
 * Thu Apr 05 2012 Ján ONDREJ (SAL) <ondrejj(at)salstar.sk> - 0.6.16-2
 - Removed double slashes fro directories (BZ#810212).