[pnp4nagios/el6] CVE-2012-3457
Ján ONDREJ
ondrejj at fedoraproject.org
Mon Sep 3 07:24:47 UTC 2012
commit c734c44a62a8d4c2e038dc8bbadb93e684ce8e35
Author: Jan ONDREJ (SAL) <ondrejj(at)salstar.sk>
Date: Mon Sep 3 09:24:33 2012 +0200
CVE-2012-3457
pnp4nagios.spec | 6 +++++-
1 files changed, 5 insertions(+), 1 deletions(-)
---
diff --git a/pnp4nagios.spec b/pnp4nagios.spec
index f21e983..71d2c0b 100644
--- a/pnp4nagios.spec
+++ b/pnp4nagios.spec
@@ -1,6 +1,6 @@
Name: pnp4nagios
Version: 0.6.16
-Release: 2%{?dist}
+Release: 4%{?dist}
Summary: Nagios performance data analysis tool
Group: Applications/System
@@ -116,6 +116,7 @@ fi
%doc AUTHORS ChangeLog COPYING INSTALL README README.fedora
%doc THANKS contrib/
%dir %{_sysconfdir}/pnp4nagios
+%config(noreplace) %attr(0640,root,nagios) %{_sysconfdir}/pnp4nagios/process_perfdata.cfg
%config(noreplace) %{_sysconfdir}/pnp4nagios/*
%config(noreplace) %{_sysconfdir}/logrotate.d/%{name}
%config(noreplace) %{_sysconfdir}/httpd/conf.d/%{name}.conf
@@ -137,6 +138,9 @@ fi
%{_datadir}/nagios/html/%{name}/kohana
%changelog
+* Mon Sep 03 2012 Ján ONDREJ (SAL) <ondrejj(at)salstar.sk> - 0.6.16-4
+- CVE-2012-3457 - process_perfdata.cfg world readable
+
* Thu Apr 05 2012 Ján ONDREJ (SAL) <ondrejj(at)salstar.sk> - 0.6.16-2
- Removed double slashes fro directories (BZ#810212).
More information about the scm-commits
mailing list