Bug 864843 (CVE-2014-1878) - VUL-0: CVE-2014-1878: nagios: possible buffer overflows in cmd.cgi
Summary: VUL-0: CVE-2014-1878: nagios: possible buffer overflows in cmd.cgi
Status: VERIFIED FIXED
Alias: CVE-2014-1878
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/96405/
Whiteboard: maint:released:sle11-sp1:56829 maint:...
Keywords:
Depends on:
Blocks:
 
Reported: 2014-02-20 10:47 UTC by Victor Pereira
Modified: 2014-06-23 10:48 UTC (History)
4 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Victor Pereira 2014-02-20 10:47:16 UTC 
CVE-2014-1878

A potential buffer overflow vulnerability was reported in Icinga [1],[2] which could possibly be exploited by remote attackers to cause a denial of service.  This vulnerability is caused due to a boundary error in the cmd_submitf() function.  This code in Icinga originated in Nagios, and a visual inspection of the code indicates Nagios is likewise affected.

CVE-2014-1878 was assigned to Icinga, however given that the code is identical and has the same origin (Nagios is the originator) the same CVE should also apply to Nagios.

References:
[1] https://www.icinga.org/2014/02/11/bugfix-releases-1-10-3-1-9-5-1-8-6/
[2] https://dev.icinga.org/issues/5434
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1878
https://bugzilla.redhat.com/show_bug.cgi?id=1066578
Comment 1 Swamp Workflow Management 2014-02-20 23:01:10 UTC 
bugbot adjusting priority
Comment 3 Lars Vogdt 2014-03-28 21:25:52 UTC 
Nagios 4.0.4 (the current one in Factory) : submitted #228153
Nagios 3.5.0 (openSUSE 12.3 : submitted #228152
Nagios 3.5.1 (openSUSE 13.1 : submitted #228152

Nagios 3.0.6 (SLE-11)   : submitted #35198
Nagios 2.6 (SLE-10-SP3) : seems unaffected
Nagios 1.2 (SLE-9)      : seems unaffected

@Security: can you take over, please?
Comment 5 Bernhard Wiedemann 2014-03-28 22:00:14 UTC 
This is an autogenerated message for OBS integration:
This bug (864843) was mentioned in
https://build.opensuse.org/request/show/228152 13.1+12.3 / nagios
https://build.opensuse.org/request/show/228153 Factory / nagios
Comment 6 Marcus Meissner 2014-03-31 07:32:24 UTC 
yes
Comment 7 Swamp Workflow Management 2014-04-11 14:05:03 UTC 
openSUSE-SU-2014:0516-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 864843
CVE References: CVE-2014-1878
Sources used:
openSUSE 13.1 (src):    nagios-3.5.1-3.9.1
openSUSE 12.3 (src):    nagios-3.5.0-2.18.1
Comment 8 Swamp Workflow Management 2014-04-24 17:04:21 UTC 
Update released for: nagios, nagios-debuginfo, nagios-debugsource, nagios-devel, nagios-www
Products:
SLE-DEBUGINFO 11-SP1-TERADATA (x86_64)
SLE-SERVER 11-SP1-TERADATA (x86_64)
Comment 9 Swamp Workflow Management 2014-04-24 21:48:04 UTC 
Update released for: nagios, nagios-debuginfo, nagios-debugsource, nagios-devel, nagios-www
Products:
SLE-DEBUGINFO 11-SP3 (i386, ia64, ppc64, s390x, x86_64)
SLE-SDK 11-SP3 (i386, ia64, ppc64, s390x, x86_64)
SLE-SERVER 11-SP3 (i386, ia64, ppc64, s390x, x86_64)
SLES4VMWARE 11-SP3 (i386, x86_64)
Comment 10 Swamp Workflow Management 2014-04-25 01:05:09 UTC 
SUSE-SU-2014:0570-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 864843
CVE References: CVE-2014-1878
Sources used:
SUSE Linux Enterprise Software Development Kit 11 SP3 (src):    nagios-3.0.6-1.25.36.1
SUSE Linux Enterprise Server 11 SP3 for VMware (src):    nagios-3.0.6-1.25.36.1
SUSE Linux Enterprise Server 11 SP3 (src):    nagios-3.0.6-1.25.36.1
Comment 11 Johannes Segitz 2014-06-23 10:48:23 UTC 
all packages fixed