287354 – net-mgmt/nagios: Multiple unpatched CVEs

Bug 287354 - net-mgmt/nagios: Multiple unpatched CVEs

Summary: net-mgmt/nagios: Multiple unpatched CVEs

Status:	New

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Many People
Assignee:	Jochen Neumeister

URL:
Keywords:

Depends on:
Blocks:

Reported:	2025-06-07 10:06 UTC by Daniel Engberg
Modified:	2025-06-07 11:09 UTC (History)
CC List:	2 users (show)

See Also:

Flags:	bugzilla: maintainer-feedback? (joneum)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Daniel Engberg freebsd_committer

2025-06-07 10:06:36 UTC

From what I can tell this port has mulitple CVEs unpatched and isn't support by upstream. What are the plans for this port?

https://nvd.nist.gov/vuln/search/results?form_type=Advanced&results_type=overview&isCpeNameSearch=true&seach_type=all&query=cpe:2.3:a:nagios:nagios:3.5.1:*:*:*:*:*:*:*

Comment 1 Kurt Jaeger freebsd_committer

2025-06-07 10:53:52 UTC

None of them affect production systems, because they are in very specific configs.

Comment 2 Vladimir Druzenko freebsd_committer

2025-06-07 11:09:35 UTC

net-mgmt/nagios4 4.5.9:
https://github.com/NagiosEnterprises/nagioscore/blob/nagios-4.5.9/Changelog