Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-6534 (GCVE-0-2018-6534)
Vulnerability from cvelistv5 – Published: 2018-02-27 19:00 – Updated: 2024-08-05 06:10
VLAI?
EPSS
Summary
An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T06:10:10.126Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/Icinga/icinga2/pull/6104"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2018-02-20T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-02-27T18:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/Icinga/icinga2/pull/6104"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-6534",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/Icinga/icinga2/pull/6104",
"refsource": "CONFIRM",
"url": "https://github.com/Icinga/icinga2/pull/6104"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2018-6534",
"datePublished": "2018-02-27T19:00:00",
"dateReserved": "2018-02-02T00:00:00",
"dateUpdated": "2024-08-05T06:10:10.126Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:icinga:icinga:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.0.0\", \"versionEndIncluding\": \"2.8.1\", \"matchCriteriaId\": \"1FDB0B7D-0832-4827-A0A5-B2356027FEA1\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.\"}, {\"lang\": \"es\", \"value\": \"Se ha descubierto un problema en Icinga, en versiones 2.x hasta la 2.8.1. Al enviar mensajes especialmente manipulados, un atacante puede provocar una desreferencia de puntero NULL, lo que puede hacer que el producto se cierre inesperadamente.\"}]",
"id": "CVE-2018-6534",
"lastModified": "2024-11-21T04:10:51.170",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:N/A:P\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2018-02-27T19:29:00.513",
"references": "[{\"url\": \"https://github.com/Icinga/icinga2/pull/6104\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/Icinga/icinga2/pull/6104\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-476\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-6534\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2018-02-27T19:29:00.513\",\"lastModified\":\"2024-11-21T04:10:51.170\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.\"},{\"lang\":\"es\",\"value\":\"Se ha descubierto un problema en Icinga, en versiones 2.x hasta la 2.8.1. Al enviar mensajes especialmente manipulados, un atacante puede provocar una desreferencia de puntero NULL, lo que puede hacer que el producto se cierre inesperadamente.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-476\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:icinga:icinga:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.0\",\"versionEndIncluding\":\"2.8.1\",\"matchCriteriaId\":\"1FDB0B7D-0832-4827-A0A5-B2356027FEA1\"}]}]}],\"references\":[{\"url\":\"https://github.com/Icinga/icinga2/pull/6104\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/Icinga/icinga2/pull/6104\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
FKIE_CVE-2018-6534
Vulnerability from fkie_nvd - Published: 2018-02-27 19:29 - Updated: 2024-11-21 04:10
Severity ?
Summary
An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://github.com/Icinga/icinga2/pull/6104 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/Icinga/icinga2/pull/6104 | Third Party Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:icinga:icinga:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1FDB0B7D-0832-4827-A0A5-B2356027FEA1",
"versionEndIncluding": "2.8.1",
"versionStartIncluding": "2.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash."
},
{
"lang": "es",
"value": "Se ha descubierto un problema en Icinga, en versiones 2.x hasta la 2.8.1. Al enviar mensajes especialmente manipulados, un atacante puede provocar una desreferencia de puntero NULL, lo que puede hacer que el producto se cierre inesperadamente."
}
],
"id": "CVE-2018-6534",
"lastModified": "2024-11-21T04:10:51.170",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-02-27T19:29:00.513",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/Icinga/icinga2/pull/6104"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/Icinga/icinga2/pull/6104"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-476"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-MPX7-H62M-5FWV
Vulnerability from github – Published: 2022-05-14 03:37 – Updated: 2022-05-14 03:37
VLAI?
Details
An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.
Severity ?
6.5 (Medium)
{
"affected": [],
"aliases": [
"CVE-2018-6534"
],
"database_specific": {
"cwe_ids": [
"CWE-476"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-02-27T19:29:00Z",
"severity": "MODERATE"
},
"details": "An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.",
"id": "GHSA-mpx7-h62m-5fwv",
"modified": "2022-05-14T03:37:09Z",
"published": "2022-05-14T03:37:09Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6534"
},
{
"type": "WEB",
"url": "https://github.com/Icinga/icinga2/pull/6104"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
CNVD-2018-06427
Vulnerability from cnvd - Published: 2018-03-27
VLAI Severity ?
Title
Icinga空指针解引用漏洞
Description
Icinga是一个开源计算机系统和网络监控应用程序。
Icinga存在空指针解引用漏洞。攻击者可通过发送特制报文利用该漏洞导致拒绝服务。
Severity
中
Patch Name
Icinga空指针解引用漏洞的补丁
Patch Description
Icinga是一个开源计算机系统和网络监控应用程序。
Icinga存在空指针解引用漏洞。攻击者可通过发送特制报文利用该漏洞导致拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布漏洞修复程序,请及时关注更新: https://github.com/Icinga/icinga2/pull/6104/commits/948333225d86f02810ced4d734212f58a28c7212
Reference
https://nvd.nist.gov/vuln/detail/CVE-2018-6534
Impacted products
| Name | Icinga Icinga 2.*,<2.8.1 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2018-6534"
}
},
"description": "Icinga\u662f\u4e00\u4e2a\u5f00\u6e90\u8ba1\u7b97\u673a\u7cfb\u7edf\u548c\u7f51\u7edc\u76d1\u63a7\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nIcinga\u5b58\u5728\u7a7a\u6307\u9488\u89e3\u5f15\u7528\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u62a5\u6587\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002",
"discovererName": "unknown",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://github.com/Icinga/icinga2/pull/6104/commits/948333225d86f02810ced4d734212f58a28c7212",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2018-06427",
"openTime": "2018-03-27",
"patchDescription": "Icinga\u662f\u4e00\u4e2a\u5f00\u6e90\u8ba1\u7b97\u673a\u7cfb\u7edf\u548c\u7f51\u7edc\u76d1\u63a7\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nIcinga\u5b58\u5728\u7a7a\u6307\u9488\u89e3\u5f15\u7528\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u62a5\u6587\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Icinga\u7a7a\u6307\u9488\u89e3\u5f15\u7528\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "Icinga Icinga 2.*\uff0c\u003c2.8.1"
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-6534",
"serverity": "\u4e2d",
"submitTime": "2018-02-28",
"title": "Icinga\u7a7a\u6307\u9488\u89e3\u5f15\u7528\u6f0f\u6d1e"
}
GSD-2018-6534
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-6534",
"description": "An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.",
"id": "GSD-2018-6534",
"references": [
"https://www.suse.com/security/cve/CVE-2018-6534.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-6534"
],
"details": "An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.",
"id": "GSD-2018-6534",
"modified": "2023-12-13T01:22:35.357577Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-6534",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/Icinga/icinga2/pull/6104",
"refsource": "CONFIRM",
"url": "https://github.com/Icinga/icinga2/pull/6104"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:icinga:icinga:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.8.1",
"versionStartIncluding": "2.0.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-6534"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-476"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/Icinga/icinga2/pull/6104",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/Icinga/icinga2/pull/6104"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2018-03-16T18:57Z",
"publishedDate": "2018-02-27T19:29Z"
}
}
}
OPENSUSE-SU-2024:10856-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
icinga2-2.13.1-1.3 on GA media
Notes
Title of the patch
icinga2-2.13.1-1.3 on GA media
Description of the patch
These are all security issues fixed in the icinga2-2.13.1-1.3 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10856
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "icinga2-2.13.1-1.3 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the icinga2-2.13.1-1.3 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10856",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10856-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16933 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-6534 page",
"url": "https://www.suse.com/security/cve/CVE-2018-6534/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14004 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-29663 page",
"url": "https://www.suse.com/security/cve/CVE-2020-29663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-32739 page",
"url": "https://www.suse.com/security/cve/CVE-2021-32739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-32743 page",
"url": "https://www.suse.com/security/cve/CVE-2021-32743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-37698 page",
"url": "https://www.suse.com/security/cve/CVE-2021-37698/"
}
],
"title": "icinga2-2.13.1-1.3 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10856-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "icinga2-2.13.1-1.3.aarch64",
"product": {
"name": "icinga2-2.13.1-1.3.aarch64",
"product_id": "icinga2-2.13.1-1.3.aarch64"
}
},
{
"category": "product_version",
"name": "icinga2-bin-2.13.1-1.3.aarch64",
"product": {
"name": "icinga2-bin-2.13.1-1.3.aarch64",
"product_id": "icinga2-bin-2.13.1-1.3.aarch64"
}
},
{
"category": "product_version",
"name": "icinga2-common-2.13.1-1.3.aarch64",
"product": {
"name": "icinga2-common-2.13.1-1.3.aarch64",
"product_id": "icinga2-common-2.13.1-1.3.aarch64"
}
},
{
"category": "product_version",
"name": "icinga2-doc-2.13.1-1.3.aarch64",
"product": {
"name": "icinga2-doc-2.13.1-1.3.aarch64",
"product_id": "icinga2-doc-2.13.1-1.3.aarch64"
}
},
{
"category": "product_version",
"name": "icinga2-ido-mysql-2.13.1-1.3.aarch64",
"product": {
"name": "icinga2-ido-mysql-2.13.1-1.3.aarch64",
"product_id": "icinga2-ido-mysql-2.13.1-1.3.aarch64"
}
},
{
"category": "product_version",
"name": "icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"product": {
"name": "icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"product_id": "icinga2-ido-pgsql-2.13.1-1.3.aarch64"
}
},
{
"category": "product_version",
"name": "nano-icinga2-2.13.1-1.3.aarch64",
"product": {
"name": "nano-icinga2-2.13.1-1.3.aarch64",
"product_id": "nano-icinga2-2.13.1-1.3.aarch64"
}
},
{
"category": "product_version",
"name": "vim-icinga2-2.13.1-1.3.aarch64",
"product": {
"name": "vim-icinga2-2.13.1-1.3.aarch64",
"product_id": "vim-icinga2-2.13.1-1.3.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "icinga2-2.13.1-1.3.ppc64le",
"product": {
"name": "icinga2-2.13.1-1.3.ppc64le",
"product_id": "icinga2-2.13.1-1.3.ppc64le"
}
},
{
"category": "product_version",
"name": "icinga2-bin-2.13.1-1.3.ppc64le",
"product": {
"name": "icinga2-bin-2.13.1-1.3.ppc64le",
"product_id": "icinga2-bin-2.13.1-1.3.ppc64le"
}
},
{
"category": "product_version",
"name": "icinga2-common-2.13.1-1.3.ppc64le",
"product": {
"name": "icinga2-common-2.13.1-1.3.ppc64le",
"product_id": "icinga2-common-2.13.1-1.3.ppc64le"
}
},
{
"category": "product_version",
"name": "icinga2-doc-2.13.1-1.3.ppc64le",
"product": {
"name": "icinga2-doc-2.13.1-1.3.ppc64le",
"product_id": "icinga2-doc-2.13.1-1.3.ppc64le"
}
},
{
"category": "product_version",
"name": "icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"product": {
"name": "icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"product_id": "icinga2-ido-mysql-2.13.1-1.3.ppc64le"
}
},
{
"category": "product_version",
"name": "icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"product": {
"name": "icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"product_id": "icinga2-ido-pgsql-2.13.1-1.3.ppc64le"
}
},
{
"category": "product_version",
"name": "nano-icinga2-2.13.1-1.3.ppc64le",
"product": {
"name": "nano-icinga2-2.13.1-1.3.ppc64le",
"product_id": "nano-icinga2-2.13.1-1.3.ppc64le"
}
},
{
"category": "product_version",
"name": "vim-icinga2-2.13.1-1.3.ppc64le",
"product": {
"name": "vim-icinga2-2.13.1-1.3.ppc64le",
"product_id": "vim-icinga2-2.13.1-1.3.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "icinga2-2.13.1-1.3.s390x",
"product": {
"name": "icinga2-2.13.1-1.3.s390x",
"product_id": "icinga2-2.13.1-1.3.s390x"
}
},
{
"category": "product_version",
"name": "icinga2-bin-2.13.1-1.3.s390x",
"product": {
"name": "icinga2-bin-2.13.1-1.3.s390x",
"product_id": "icinga2-bin-2.13.1-1.3.s390x"
}
},
{
"category": "product_version",
"name": "icinga2-common-2.13.1-1.3.s390x",
"product": {
"name": "icinga2-common-2.13.1-1.3.s390x",
"product_id": "icinga2-common-2.13.1-1.3.s390x"
}
},
{
"category": "product_version",
"name": "icinga2-doc-2.13.1-1.3.s390x",
"product": {
"name": "icinga2-doc-2.13.1-1.3.s390x",
"product_id": "icinga2-doc-2.13.1-1.3.s390x"
}
},
{
"category": "product_version",
"name": "icinga2-ido-mysql-2.13.1-1.3.s390x",
"product": {
"name": "icinga2-ido-mysql-2.13.1-1.3.s390x",
"product_id": "icinga2-ido-mysql-2.13.1-1.3.s390x"
}
},
{
"category": "product_version",
"name": "icinga2-ido-pgsql-2.13.1-1.3.s390x",
"product": {
"name": "icinga2-ido-pgsql-2.13.1-1.3.s390x",
"product_id": "icinga2-ido-pgsql-2.13.1-1.3.s390x"
}
},
{
"category": "product_version",
"name": "nano-icinga2-2.13.1-1.3.s390x",
"product": {
"name": "nano-icinga2-2.13.1-1.3.s390x",
"product_id": "nano-icinga2-2.13.1-1.3.s390x"
}
},
{
"category": "product_version",
"name": "vim-icinga2-2.13.1-1.3.s390x",
"product": {
"name": "vim-icinga2-2.13.1-1.3.s390x",
"product_id": "vim-icinga2-2.13.1-1.3.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "icinga2-2.13.1-1.3.x86_64",
"product": {
"name": "icinga2-2.13.1-1.3.x86_64",
"product_id": "icinga2-2.13.1-1.3.x86_64"
}
},
{
"category": "product_version",
"name": "icinga2-bin-2.13.1-1.3.x86_64",
"product": {
"name": "icinga2-bin-2.13.1-1.3.x86_64",
"product_id": "icinga2-bin-2.13.1-1.3.x86_64"
}
},
{
"category": "product_version",
"name": "icinga2-common-2.13.1-1.3.x86_64",
"product": {
"name": "icinga2-common-2.13.1-1.3.x86_64",
"product_id": "icinga2-common-2.13.1-1.3.x86_64"
}
},
{
"category": "product_version",
"name": "icinga2-doc-2.13.1-1.3.x86_64",
"product": {
"name": "icinga2-doc-2.13.1-1.3.x86_64",
"product_id": "icinga2-doc-2.13.1-1.3.x86_64"
}
},
{
"category": "product_version",
"name": "icinga2-ido-mysql-2.13.1-1.3.x86_64",
"product": {
"name": "icinga2-ido-mysql-2.13.1-1.3.x86_64",
"product_id": "icinga2-ido-mysql-2.13.1-1.3.x86_64"
}
},
{
"category": "product_version",
"name": "icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"product": {
"name": "icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"product_id": "icinga2-ido-pgsql-2.13.1-1.3.x86_64"
}
},
{
"category": "product_version",
"name": "nano-icinga2-2.13.1-1.3.x86_64",
"product": {
"name": "nano-icinga2-2.13.1-1.3.x86_64",
"product_id": "nano-icinga2-2.13.1-1.3.x86_64"
}
},
{
"category": "product_version",
"name": "vim-icinga2-2.13.1-1.3.x86_64",
"product": {
"name": "vim-icinga2-2.13.1-1.3.x86_64",
"product_id": "vim-icinga2-2.13.1-1.3.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-2.13.1-1.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64"
},
"product_reference": "icinga2-2.13.1-1.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-2.13.1-1.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le"
},
"product_reference": "icinga2-2.13.1-1.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-2.13.1-1.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x"
},
"product_reference": "icinga2-2.13.1-1.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-2.13.1-1.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64"
},
"product_reference": "icinga2-2.13.1-1.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-bin-2.13.1-1.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64"
},
"product_reference": "icinga2-bin-2.13.1-1.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-bin-2.13.1-1.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le"
},
"product_reference": "icinga2-bin-2.13.1-1.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-bin-2.13.1-1.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x"
},
"product_reference": "icinga2-bin-2.13.1-1.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-bin-2.13.1-1.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64"
},
"product_reference": "icinga2-bin-2.13.1-1.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-common-2.13.1-1.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64"
},
"product_reference": "icinga2-common-2.13.1-1.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-common-2.13.1-1.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le"
},
"product_reference": "icinga2-common-2.13.1-1.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-common-2.13.1-1.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x"
},
"product_reference": "icinga2-common-2.13.1-1.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-common-2.13.1-1.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64"
},
"product_reference": "icinga2-common-2.13.1-1.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-doc-2.13.1-1.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64"
},
"product_reference": "icinga2-doc-2.13.1-1.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-doc-2.13.1-1.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le"
},
"product_reference": "icinga2-doc-2.13.1-1.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-doc-2.13.1-1.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x"
},
"product_reference": "icinga2-doc-2.13.1-1.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-doc-2.13.1-1.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64"
},
"product_reference": "icinga2-doc-2.13.1-1.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-ido-mysql-2.13.1-1.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64"
},
"product_reference": "icinga2-ido-mysql-2.13.1-1.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-ido-mysql-2.13.1-1.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le"
},
"product_reference": "icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-ido-mysql-2.13.1-1.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x"
},
"product_reference": "icinga2-ido-mysql-2.13.1-1.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-ido-mysql-2.13.1-1.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64"
},
"product_reference": "icinga2-ido-mysql-2.13.1-1.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-ido-pgsql-2.13.1-1.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64"
},
"product_reference": "icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-ido-pgsql-2.13.1-1.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le"
},
"product_reference": "icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-ido-pgsql-2.13.1-1.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x"
},
"product_reference": "icinga2-ido-pgsql-2.13.1-1.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "icinga2-ido-pgsql-2.13.1-1.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64"
},
"product_reference": "icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nano-icinga2-2.13.1-1.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64"
},
"product_reference": "nano-icinga2-2.13.1-1.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nano-icinga2-2.13.1-1.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le"
},
"product_reference": "nano-icinga2-2.13.1-1.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nano-icinga2-2.13.1-1.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x"
},
"product_reference": "nano-icinga2-2.13.1-1.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nano-icinga2-2.13.1-1.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64"
},
"product_reference": "nano-icinga2-2.13.1-1.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-icinga2-2.13.1-1.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64"
},
"product_reference": "vim-icinga2-2.13.1-1.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-icinga2-2.13.1-1.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le"
},
"product_reference": "vim-icinga2-2.13.1-1.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-icinga2-2.13.1-1.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x"
},
"product_reference": "vim-icinga2-2.13.1-1.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-icinga2-2.13.1-1.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
},
"product_reference": "vim-icinga2-2.13.1-1.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-16933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16933"
}
],
"notes": [
{
"category": "general",
"text": "etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a chown call for a filename in a user-writable directory, which allows local users to gain privileges by leveraging access to the $ICINGA2_USER account for creation of a link.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16933",
"url": "https://www.suse.com/security/cve/CVE-2017-16933"
},
{
"category": "external",
"summary": "SUSE Bug 1086673 for CVE-2017-16933",
"url": "https://bugzilla.suse.com/1086673"
},
{
"category": "external",
"summary": "SUSE Bug 1086676 for CVE-2017-16933",
"url": "https://bugzilla.suse.com/1086676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-16933"
},
{
"cve": "CVE-2018-6534",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-6534"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-6534",
"url": "https://www.suse.com/security/cve/CVE-2018-6534"
},
{
"category": "external",
"summary": "SUSE Bug 1086674 for CVE-2018-6534",
"url": "https://bugzilla.suse.com/1086674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-6534"
},
{
"cve": "CVE-2020-14004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14004"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of the icinga2 systemd service) executes chmod 2750 /run/icinga2/cmd. /run/icinga2 is under control of an unprivileged user by default. If /run/icinga2/cmd is a symlink, then it will by followed and arbitrary files can be changed to mode 2750 by the unprivileged icinga2 user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14004",
"url": "https://www.suse.com/security/cve/CVE-2020-14004"
},
{
"category": "external",
"summary": "SUSE Bug 1172171 for CVE-2020-14004",
"url": "https://bugzilla.suse.com/1172171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-14004"
},
{
"cve": "CVE-2020-29663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-29663"
}
],
"notes": [
{
"category": "general",
"text": "Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-29663",
"url": "https://www.suse.com/security/cve/CVE-2020-29663"
},
{
"category": "external",
"summary": "SUSE Bug 1180147 for CVE-2020-29663",
"url": "https://bugzilla.suse.com/1180147"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-29663"
},
{
"cve": "CVE-2021-32739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-32739"
}
],
"notes": [
{
"category": "general",
"text": "Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. From version 2.4.0 through version 2.12.4, a vulnerability exists that may allow privilege escalation for authenticated API users. With a read-ony user\u0027s credentials, an attacker can view most attributes of all config objects including `ticket_salt` of `ApiListener`. This salt is enough to compute a ticket for every possible common name (CN). A ticket, the master node\u0027s certificate, and a self-signed certificate are enough to successfully request the desired certificate from Icinga. That certificate may in turn be used to steal an endpoint or API user\u0027s identity. Versions 2.12.5 and 2.11.10 both contain a fix the vulnerability. As a workaround, one may either specify queryable types explicitly or filter out ApiListener objects.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-32739",
"url": "https://www.suse.com/security/cve/CVE-2021-32739"
},
{
"category": "external",
"summary": "SUSE Bug 1188372 for CVE-2021-32739",
"url": "https://bugzilla.suse.com/1188372"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-32739"
},
{
"cve": "CVE-2021-32743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-32743"
}
],
"notes": [
{
"category": "general",
"text": "Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. In versions prior to 2.11.10 and from version 2.12.0 through version 2.12.4, some of the Icinga 2 features that require credentials for external services expose those credentials through the API to authenticated API users with read permissions for the corresponding object types. IdoMysqlConnection and IdoPgsqlConnection (every released version) exposes the password of the user used to connect to the database. IcingaDB (added in 2.12.0) exposes the password used to connect to the Redis server. ElasticsearchWriter (added in 2.8.0)exposes the password used to connect to the Elasticsearch server. An attacker who obtains these credentials can impersonate Icinga to these services and add, modify and delete information there. If credentials with more permissions are in use, this increases the impact accordingly. Starting with the 2.11.10 and 2.12.5 releases, these passwords are no longer exposed via the API. As a workaround, API user permissions can be restricted to not allow querying of any affected objects, either by explicitly listing only the required object types for object query permissions, or by applying a filter rule.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-32743",
"url": "https://www.suse.com/security/cve/CVE-2021-32743"
},
{
"category": "external",
"summary": "SUSE Bug 1188370 for CVE-2021-32743",
"url": "https://bugzilla.suse.com/1188370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-32743"
},
{
"cve": "CVE-2021-37698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-37698"
}
],
"notes": [
{
"category": "general",
"text": "Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. In versions 2.5.0 through 2.13.0, ElasticsearchWriter, GelfWriter, InfluxdbWriter and Influxdb2Writer do not verify the server\u0027s certificate despite a certificate authority being specified. Icinga 2 instances which connect to any of the mentioned time series databases (TSDBs) using TLS over a spoofable infrastructure should immediately upgrade to version 2.13.1, 2.12.6, or 2.11.11 to patch the issue. Such instances should also change the credentials (if any) used by the TSDB writer feature to authenticate against the TSDB. There are no workarounds aside from upgrading.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-37698",
"url": "https://www.suse.com/security/cve/CVE-2021-37698"
},
{
"category": "external",
"summary": "SUSE Bug 1189653 for CVE-2021-37698",
"url": "https://bugzilla.suse.com/1189653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-bin-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-common-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-doc-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-mysql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:icinga2-ido-pgsql-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:nano-icinga2-2.13.1-1.3.x86_64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.aarch64",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.ppc64le",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.s390x",
"openSUSE Tumbleweed:vim-icinga2-2.13.1-1.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-37698"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…