openSUSE-SU-2014:0603-1: moderate: update for nagios-nrpe - openSUSE Updates

2 May 2014


      openSUSE Security Update: update for nagios-nrpe
______________________________________________________________________________
Announcement ID:    openSUSE-SU-2014:0603-1
Rating:             moderate
References:         #874743 
Cross-References:   CVE-2014-2913
Affected Products:
                    openSUSE 11.4
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This nrpe update fixes the following security documentation
   problem.
- bnc#874743: Documented a possible command injection when
   command arguments are enabled (CVE-2014-2913). More
   details can be found inside the documentation of this
   package.
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:
- openSUSE 11.4:
zypper in -t patch 2014-51
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 11.4 (i586 x86_64):
nagios-nrpe-2.12-29.1
      nagios-nrpe-debuginfo-2.12-29.1
      nagios-nrpe-debugsource-2.12-29.1
      nagios-nrpe-doc-2.12-29.1
      nagios-plugins-nrpe-2.12-29.1
      nagios-plugins-nrpe-debuginfo-2.12-29.1
References:
http://support.novell.com/security/cve/CVE-2014-2913.html
   https://bugzilla.novell.com/874743