rpm package
suse/icinga2&distro=SUSE Linux Enterprise Module for HPC 12
pkg:rpm/suse/icinga2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-48057 | — | < 2.8.2-3.11.2 | 2.8.2-3.11.2 | May 27, 2025 | Icinga 2 is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. Prior to versions 2.12.12, 2.13.12, and 2.14.6, the VerifyCertificate() function can be tricked into incorrectly treating c | ||
| CVE-2021-37698 | — | < 2.8.2-3.6.1 | 2.8.2-3.6.1 | Aug 19, 2021 | Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. In versions 2.5.0 through 2.13.0, ElasticsearchWriter, GelfWriter, InfluxdbWriter and Influxdb2Writer do not verify the serve | ||
| CVE-2020-29663 | — | < 2.8.2-3.6.1 | 2.8.2-3.6.1 | Dec 15, 2020 | Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.3. | ||
| CVE-2020-14004 | — | < 2.8.2-3.6.1 | 2.8.2-3.6.1 | Jun 12, 2020 | An issue was discovered in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of the icinga2 systemd service) executes chmod 2750 /run/icinga2/cmd. /run/icinga2 is under control of an unprivileged user by default. If /run/icinga2/cmd is a symlink, then it will by fo |
- CVE-2025-48057May 27, 2025affected < 2.8.2-3.11.2fixed 2.8.2-3.11.2
Icinga 2 is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. Prior to versions 2.12.12, 2.13.12, and 2.14.6, the VerifyCertificate() function can be tricked into incorrectly treating c
- CVE-2021-37698Aug 19, 2021affected < 2.8.2-3.6.1fixed 2.8.2-3.6.1
Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. In versions 2.5.0 through 2.13.0, ElasticsearchWriter, GelfWriter, InfluxdbWriter and Influxdb2Writer do not verify the serve
- CVE-2020-29663Dec 15, 2020affected < 2.8.2-3.6.1fixed 2.8.2-3.6.1
Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.3.
- CVE-2020-14004Jun 12, 2020affected < 2.8.2-3.6.1fixed 2.8.2-3.6.1
An issue was discovered in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of the icinga2 systemd service) executes chmod 2750 /run/icinga2/cmd. /run/icinga2 is under control of an unprivileged user by default. If /run/icinga2/cmd is a symlink, then it will by fo