Stay Vigilant with Timely Linux Security Advisories

Refine advisories

X Clear Filters

Critical (13)

Important (11)

clickjacking (43)

fedora (7395)

important (27741)

security advisory (114928)

transmission (19)

update (16588)

application issue (26)

libre (3)

real-time communications (2)

updating (7)

Debian LTS (1)

Debian (2)

Fedora (9)

Gentoo (4)

Mageia (2)

OpenSUSE (5)

SuSE (2)

Ubuntu (4)

Published Date Range

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

bottom 200

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

We found 25 articles for you...

202

security advisorysecurity issuesoftware update

openSUSE Backports SLE-15-SP2: 2021:0735-1 Important Nagios Fixes

An update that solves two vulnerabilities and has three fixes is now available. . openSUSE Security Update: Security update for nagios ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:0735-1 Rating: important References: #1003362 #1014637 #1172794 #1182398 #989759 Cross-References: CVE-2016-6209 CVE-2020-13977 CVSS scores: CVE-2016-6209 (NVD) : 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2020-13977 (NVD) : 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N CVE-2020-13977 (SUSE): 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N Affected Products: openSUSE Backports SLE-15-SP2 ______________________________________________________________________________ An update that solves two vulnerabilities and has three fixes is now available. Description: This update for nagios fixes the following issues: - new nagios-exec-start-post script to fix boo#1003362 - fix nagios_upgrade.sh writing to log file in user controlled directory (boo#1182398). The nagios_upgrade.sh script writes the logfile directly below /var/log/ nagios was updated to 4.4.6: * Fixed Map display in Internet Explorer 11 (#714) * Fixed duplicate properties appearing in statusjson.cgi (#718) * Fixed NERD not building when enabled in ./configure (#723) * Fixed build process when using GCC 10 (#721) * Fixed postauth vulnerabilities in histogram.js, map.js, trends.js (CVE-2020-13977, boo#1172794) * When using systemd, configuration will be verified before reloading (#715) * Fixed HARD OK states triggering on the maximum check attempt (#757) * Fix for CVE-2016-6209 (boo#989759) - The "corewindow" parameter (as in bringing this to our attention go to Dawid Golunski (boo#1014637) This update was imported from the openSUSE:Leap:15.2:Update update project. Patch Instructions: Toinstall this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP2: zypper in -t patch openSUSE-2021-735=1 Package List: - openSUSE Backports SLE-15-SP2 (aarch64 ppc64le s390x x86_64): nagios-4.4.6-bp152.2.3.1 nagios-contrib-4.4.6-bp152.2.3.1 nagios-devel-4.4.6-bp152.2.3.1 nagios-www-4.4.6-bp152.2.3.1 nagios-www-dch-4.4.6-bp152.2.3.1 - openSUSE Backports SLE-15-SP2 (noarch): nagios-theme-exfoliation-4.4.6-bp152.2.3.1 References: https://www.suse.com/security/cve/CVE-2016-6209.html https://www.suse.com/security/cve/CVE-2020-13977.html https://bugzilla.suse.com/1003362 https://bugzilla.suse.com/1014637 https://bugzilla.suse.com/1172794 https://bugzilla.suse.com/1182398 https://bugzilla.suse.com/989759 . Discussing the latest updates and remedies for nagios flaws in openSUSE underscores their significance for safeguarding systems.. OpenSUSE Backports, Nagios Security Update, Important Fixes. . Severity: Important. LinuxSecurity.com Team

May 15, 2021 •Important OpenSUSE

202

security advisorysoftware updatethreat mitigation

openSUSE Leap 15.2: Security Update for Nagios – Important Fixes

An update that solves two vulnerabilities and has three fixes is now available. . openSUSE Security Update: Security update for nagios ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:0715-1 Rating: important References: #1003362 #1014637 #1172794 #1182398 #989759 Cross-References: CVE-2016-6209 CVE-2020-13977 CVSS scores: CVE-2016-6209 (NVD) : 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2020-13977 (NVD) : 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N CVE-2020-13977 (SUSE): 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that solves two vulnerabilities and has three fixes is now available. Description: This update for nagios fixes the following issues: - new nagios-exec-start-post script to fix boo#1003362 - fix nagios_upgrade.sh writing to log file in user controlled directory (boo#1182398). The nagios_upgrade.sh script writes the logfile directly below /var/log/ nagios was updated to 4.4.6: * Fixed Map display in Internet Explorer 11 (#714) * Fixed duplicate properties appearing in statusjson.cgi (#718) * Fixed NERD not building when enabled in ./configure (#723) * Fixed build process when using GCC 10 (#721) * Fixed postauth vulnerabilities in histogram.js, map.js, trends.js (CVE-2020-13977, boo#1172794) * When using systemd, configuration will be verified before reloading (#715) * Fixed HARD OK states triggering on the maximum check attempt (#757) * Fix for CVE-2016-6209 (boo#989759) - The "corewindow" parameter (as in bringing this to our attention go to Dawid Golunski (boo#1014637) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods likeYaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-715=1 Package List: - openSUSE Leap 15.2 (x86_64): nagios-4.4.6-lp152.2.3.1 nagios-contrib-4.4.6-lp152.2.3.1 nagios-debuginfo-4.4.6-lp152.2.3.1 nagios-debugsource-4.4.6-lp152.2.3.1 nagios-devel-4.4.6-lp152.2.3.1 nagios-www-4.4.6-lp152.2.3.1 nagios-www-dch-4.4.6-lp152.2.3.1 nagios-www-debuginfo-4.4.6-lp152.2.3.1 - openSUSE Leap 15.2 (noarch): nagios-theme-exfoliation-4.4.6-lp152.2.3.1 References: https://www.suse.com/security/cve/CVE-2016-6209.html https://www.suse.com/security/cve/CVE-2020-13977.html https://bugzilla.suse.com/1003362 https://bugzilla.suse.com/1014637 https://bugzilla.suse.com/1172794 https://bugzilla.suse.com/1182398 https://bugzilla.suse.com/989759 . This security bulletin notifies users about a significant nagios patch for openSUSE that resolves two vulnerabilities and includes three enhancements.. openSUSE Updates,nagios security fix,nagios updates,security advisory. . Severity: Important. LinuxSecurity.com Team

May 12, 2021 •Important OpenSUSE

203

security advisorycriticalremote access

Mageia 7: 2021-0209 Critical: Nagios Remote Access Vulnerability Fix

Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files (CVE-2020-13977). . MGASA-2021-0209 - Updated nagios packages fix a security vulnerability Publication date: 12 May 2021 URL: https://advisories.mageia.org/MGASA-2021-0209.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-13977 Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files (CVE-2020-13977). References: - https://bugs.mageia.org/show_bug.cgi?id=28557 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/JUEIABR4Y6L5J5MZDFWU46ZWXMJO64U3/ - https://www.cve.org/CVERecord?id=CVE-2020-13977 SRPMS: - 7/core/nagios-4.4.3-2.1.mga7 . The security update for Nagios version 4.4.5 resolves the vulnerability identified as CVE-2020-13977 that impacts Mageia 7. Learn more about this issue.. Nagios Update, Mageia Security, Remote Access Fix, Update Announcement. . Severity: Critical. LinuxSecurity.com Team

May 12, 2021 •Critical Mageia

security advisoryupdateFedora

Fedora 34: 2021-01a2f76cc3 Critical: Nagios Post-Login Patch

Fix for CVE-2020-13977 BZ1849087 Add missing require for nagios-plugins-ping Update to 4.4.6. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-01a2f76cc3 2021-03-19 19:51:22.364143 --------------------------------------------------------------------------------Name : nagios Product : Fedora 34 Version : 4.4.6 Release : 4.fc34 URL : https://www.nagios.org/projects/nagios-core/ Summary : Host/service/network monitoring program Description : Nagios is a program that will monitor hosts and services on your network. It has the ability to send email or page alerts when a problem arises and when a problem is resolved. Nagios is written in C and is designed to run under Linux (and some other *NIX variants) as a background process, intermittently running checks on various services that you specify. The actual service checks are performed by separate "plugin" programs which return the status of the checks to Nagios. The plugins are available at https://github.com/nagios-plugins/nagios-plugins This package provides the core program, web interface, and documentation files for Nagios. Development files are built as a separate package. --------------------------------------------------------------------------------Update Information: Fix for CVE-2020-13977 BZ1849087 Add missing require for nagios-plugins-ping Update to 4.4.6 --------------------------------------------------------------------------------ChangeLog: * Wed Mar 3 2021 Guido Aulisi - 4.4.6-4 - Add missing require for nagios-plugins-ping - Fix run path * Sat Feb 27 2021 Guido Aulisi - 4.4.6-3 - Require plugins needed for localhost monitoring (#1932297) * Tue Feb 23 2021 Guido Aulisi - 4.4.6-2 - Fix systemd unit file permissions #1676334 --------------------------------------------------------------------------------References: [ 1 ] Bug #1829114 - nagios-4.4.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1829114 [ 2 ] Bug #1849087 - CVE-2020-13977 nagios: URL injection (post-authentication) vulnerability [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1849087 [ 3 ] Bug #1932297 - Nagios server rpm missing some nagios-plugins-* dependency https://bugzilla.redhat.com/show_bug.cgi?id=1932297 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-01a2f76cc3' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . An important release for Zabbix on CentOS 8 tackles CVE-2021-22898, improving performance tracking features.. Fedora 34 Update,nagios security fix,nagios monitoring tool. . Severity: Critical. LinuxSecurity.com Team

Mar 19, 2021 •Critical Fedora

security advisoryFedoranetwork monitoring

Fedora 33: 2021-5689072a7e Moderate: Nagios Localhost Monitoring Update

Fix for CVE-2020-13977 BZ1849087 Require plugins needed for localhost monitoring (#1932297) Update to 4.4.6. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-5689072a7e 2021-03-07 13:52:17.728701 --------------------------------------------------------------------------------Name : nagios Product : Fedora 33 Version : 4.4.6 Release : 3.fc33 URL : https://www.nagios.org/projects/nagios-core/ Summary : Host/service/network monitoring program Description : Nagios is a program that will monitor hosts and services on your network. It has the ability to send email or page alerts when a problem arises and when a problem is resolved. Nagios is written in C and is designed to run under Linux (and some other *NIX variants) as a background process, intermittently running checks on various services that you specify. The actual service checks are performed by separate "plugin" programs which return the status of the checks to Nagios. The plugins are available at https://github.com/nagios-plugins/nagios-plugins This package provides the core program, web interface, and documentation files for Nagios. Development files are built as a separate package. --------------------------------------------------------------------------------Update Information: Fix for CVE-2020-13977 BZ1849087 Require plugins needed for localhost monitoring (#1932297) Update to 4.4.6 --------------------------------------------------------------------------------ChangeLog: * Sat Feb 27 2021 Guido Aulisi - 4.4.6-3 - Require plugins needed for localhost monitoring (#1932297) * Tue Feb 23 2021 Guido Aulisi - 4.4.6-2 - Fix systemd unit file permissions #1676334 * Sat Feb 20 2021 Guido Aulisi - 4.4.6-1 - Update to 4.4.6 - Fix for CVE-2020-13977 #BZ1849087 - Some spec cleanup --------------------------------------------------------------------------------References: [ 1 ] Bug #1829114 - nagios-4.4.6 isavailable https://bugzilla.redhat.com/show_bug.cgi?id=1829114 [ 2 ] Bug #1849087 - CVE-2020-13977 nagios: URL injection (post-authentication) vulnerability [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1849087 [ 3 ] Bug #1932297 - Nagios server rpm missing some nagios-plugins-* dependency https://bugzilla.redhat.com/show_bug.cgi?id=1932297 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-5689072a7e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . An enhancement for Icinga on CentOS 8 resolves CVE-2021-23031 and mandates extensions for tracking local services efficiently.. Nagios Update,Fedora Security,Localhost Monitoring,CVE Update. . LinuxSecurity.com Team

Mar 07, 2021 Fedora

security advisoryfedoraupdate

Fedora 32: FEDORA-2021-b5e897a2e5 Critical: Nagios URL Injection

Fix for CVE-2020-13977 BZ1849087 Require plugins needed for localhost monitoring (#1932297) Update to 4.4.6. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-b5e897a2e5 2021-03-07 13:52:38.179269 --------------------------------------------------------------------------------Name : nagios Product : Fedora 32 Version : 4.4.6 Release : 3.fc32 URL : https://www.nagios.org/projects/nagios-core/ Summary : Host/service/network monitoring program Description : Nagios is a program that will monitor hosts and services on your network. It has the ability to send email or page alerts when a problem arises and when a problem is resolved. Nagios is written in C and is designed to run under Linux (and some other *NIX variants) as a background process, intermittently running checks on various services that you specify. The actual service checks are performed by separate "plugin" programs which return the status of the checks to Nagios. The plugins are available at https://github.com/nagios-plugins/nagios-plugins This package provides the core program, web interface, and documentation files for Nagios. Development files are built as a separate package. --------------------------------------------------------------------------------Update Information: Fix for CVE-2020-13977 BZ1849087 Require plugins needed for localhost monitoring (#1932297) Update to 4.4.6 --------------------------------------------------------------------------------ChangeLog: * Sat Feb 27 2021 Guido Aulisi - 4.4.6-3 - Require plugins needed for localhost monitoring (#1932297) * Tue Feb 23 2021 Guido Aulisi - 4.4.6-2 - Fix systemd unit file permissions #1676334 * Sat Feb 20 2021 Guido Aulisi - 4.4.6-1 - Update to 4.4.6 - Fix for CVE-2020-13977 #BZ1849087 - Some spec cleanup --------------------------------------------------------------------------------References: [ 1 ] Bug #1829114 - nagios-4.4.6 isavailable https://bugzilla.redhat.com/show_bug.cgi?id=1829114 [ 2 ] Bug #1849087 - CVE-2020-13977 nagios: URL injection (post-authentication) vulnerability [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1849087 [ 3 ] Bug #1932297 - Nagios server rpm missing some nagios-plugins-* dependency https://bugzilla.redhat.com/show_bug.cgi?id=1932297 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-b5e897a2e5' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Important patch for Nagios on Fedora 32 tackling CVE-2020-13977 by ensuring essential plugins are mandatory for effective monitoring.. Nagios Monitoring,Fedora Security Fix,Update for CVE-2020-13977. . Severity: Critical. LinuxSecurity.com Team

Mar 07, 2021 •Critical Fedora

202

security advisorymoderateXSS

openSUSE 15.1: 2020:0517-1 Moderate: nagios Denial Of Service Issues

An update that fixes 5 vulnerabilities is now available.. openSUSE Security Update: Security update for nagios ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:0517-1 Rating: moderate References: #1028975 #1119832 #1156309 Cross-References: CVE-2018-13441 CVE-2018-13457 CVE-2018-13458 CVE-2018-18245 CVE-2019-3698 Affected Products: openSUSE Backports SLE-15-SP1 ______________________________________________________________________________ An update that fixes 5 vulnerabilities is now available. Description: This update for nagios to version 4.4.5 fixes the following issues: - CVE-2019-3698: Symbolic link following vulnerability in the cronjob allows local attackers to cause cause DoS or potentially escalate privileges. (boo#1156309) - CVE-2018-18245: Fixed XSS vulnerability in Alert Summary report (boo#1119832) - CVE-2018-13441, CVE-2018-13458, CVE-2018-13457: Fixed a few denial of service vulnerabilities caused by null pointer dereference (boo#1101293, boo#1101289, boo#1101290). This update was imported from the openSUSE:Leap:15.1:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP1: zypper in -t patch openSUSE-2020-517=1 Package List: - openSUSE Backports SLE-15-SP1 (aarch64 ppc64le s390x x86_64): nagios-4.4.5-bp151.4.3.1 nagios-contrib-4.4.5-bp151.4.3.1 nagios-devel-4.4.5-bp151.4.3.1 nagios-www-4.4.5-bp151.4.3.1 nagios-www-dch-4.4.5-bp151.4.3.1 - openSUSE Backports SLE-15-SP1 (noarch): nagios-theme-exfoliation-4.4.5-bp151.4.3.1 References: https://www.suse.com/security/cve/CVE-2018-13441.html https://www.suse.com/security/cve/CVE-2018-13457.html https://www.suse.com/security/cve/CVE-2018-13458.html https://www.suse.com/security/cve/CVE-2018-18245.html https://www.suse.com/security/cve/CVE-2019-3698.html https://bugzilla.suse.com/1028975 https://bugzilla.suse.com/1119832 https://bugzilla.suse.com/1156309 -- . Addresses several security flaws in nagios via an openSUSE security patch for enhanced system integrity and reliability.. openSUSE Update,nagios Security Fixes,Denial of Service,Local Attacks,Moderate Threats. . LinuxSecurity.com Team

Apr 14, 2020 OpenSUSE

202

security advisorymoderatesecurity update

openSUSE 15-SP1: 2021:0517-1 Moderate: nagios Security Update

An update that fixes 5 vulnerabilities is now available. . openSUSE Security Update: Security update for nagios ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:0517-1 Rating: moderate References: #1028975 #1119832 #1156309 Cross-References: CVE-2018-13441 CVE-2018-13457 CVE-2018-13458 CVE-2018-18245 CVE-2019-3698 Affected Products: openSUSE Backports SLE-15-SP1 ______________________________________________________________________________ An update that fixes 5 vulnerabilities is now available. Description: This update for nagios to version 4.4.5 fixes the following issues: - CVE-2019-3698: Symbolic link following vulnerability in the cronjob allows local attackers to cause cause DoS or potentially escalate privileges. (boo#1156309) - CVE-2018-18245: Fixed XSS vulnerability in Alert Summary report (boo#1119832) - CVE-2018-13441, CVE-2018-13458, CVE-2018-13457: Fixed a few denial of service vulnerabilities caused by null pointer dereference (boo#1101293, boo#1101289, boo#1101290). This update was imported from the openSUSE:Leap:15.1:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP1: zypper in -t patch openSUSE-2020-517=1 Package List: - openSUSE Backports SLE-15-SP1 (aarch64 ppc64le s390x x86_64): nagios-4.4.5-bp151.4.3.1 nagios-contrib-4.4.5-bp151.4.3.1 nagios-devel-4.4.5-bp151.4.3.1 nagios-www-4.4.5-bp151.4.3.1 nagios-www-dch-4.4.5-bp151.4.3.1 - openSUSE Backports SLE-15-SP1 (noarch): nagios-theme-exfoliation-4.4.5-bp151.4.3.1 References: https://www.suse.com/security/cve/CVE-2018-13441.html https://www.suse.com/security/cve/CVE-2018-13457.html https://www.suse.com/security/cve/CVE-2018-13458.html https://www.suse.com/security/cve/CVE-2018-18245.html https://www.suse.com/security/cve/CVE-2019-3698.html https://bugzilla.suse.com/1028975 https://bugzilla.suse.com/1119832 https://bugzilla.suse.com/1156309 -- . The openSUSE Security Update resolves various vulnerabilities in nagios, classified with moderate severity, and delivers essential patches.. openSUSE Security Update,nagios fixes,moderate severity,DoS protection,XSS vulnerability. . LinuxSecurity.com Team

Apr 14, 2020 OpenSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

bottom 200

Stay Secure with the Latest Linux Advisories

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

openSUSE Backports SLE-15-SP2: 2021:0735-1 Important Nagios Fixes

openSUSE Leap 15.2: Security Update for Nagios – Important Fixes

Mageia 7: 2021-0209 Critical: Nagios Remote Access Vulnerability Fix

Fedora 34: 2021-01a2f76cc3 Critical: Nagios Post-Login Patch

Fedora 33: 2021-5689072a7e Moderate: Nagios Localhost Monitoring Update

Fedora 32: FEDORA-2021-b5e897a2e5 Critical: Nagios URL Injection

openSUSE 15.1: 2020:0517-1 Moderate: nagios Denial Of Service Issues

openSUSE 15-SP1: 2021:0517-1 Moderate: nagios Security Update

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!