[Xymon] TRe: Xymon 4.3.18 Released
Martin Flemming
martin.flemming at desy.de
Tue Feb 3 22:18:36 CET 2015
Wow !
> The first order of business will be the official 4.3.18 release, landing shortly,
That's indeed very shortly ;-)
Thanks a lot J.C. !
cheers
martin
On Tue, 3 Feb 2015, J.C. Cleaver wrote:
> Hello,
>
> Xymon 4.3.18 has been released to SourceForge
> (https://sourceforge.net/projects/xymon/) and should be populating on the
> mirrors shortly.
>hatnks a
>
> 4.3.18 fixes a buffer overflow vulnerability in the acknowledge.cgi script
> (tracked as CVE-2015-1430). Thank you to Mark Felder and Martin Lenko for
> their assistance in this.
>
>
> This release also modifies the CGI interface to remove any dependencies on
> a shell interpreter, as a protection against any future "Shellshock"-type
> bash vulnerabilities. (Only users running bash as their /bin/sh
> interpreter would have been affected.) As a result, the Apache
> configuration for the web interface and your cgioptions.cfg file may need
> to be adjusted, depending on your configuration.
>
>
> Several other small bugs have also been addressed. For more details on
> those, see the Changes file in the distribution.
>
>
> Regards,
>
> -jc
>h
> _______________________________________________
> Xymon mailing list
> Xymon at xymon.com
> http://lists.xymon.com/mailman/listinfo/xymon
More information about the Xymon
mailing list