7 matches found
CVE-2020-29663
Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.3...
SUSE SLES12: icinga2 / icinga2-bin / icinga2-common / icinga2-doc / etc (SUSE-SU-2022:3725-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3725-1 advisory. - CVE-2020-14004: prepare-dirs script allows for symlink attack in the icinga user context. bsc1172171 - CVE-2020-29663: ignoring...
openSUSE 15 Security Update : icinga2 (openSUSE-SU-2021:1069-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1069-1 advisory. - Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CR...
openSUSE: Security Advisory for icinga2 (openSUSE-SU-2021:1029-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE 15 Security Update : icinga2 (openSUSE-SU-2021:1029-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1029-1 advisory. - Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CR...
DEBIAN-CVE-2020-29663
Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.3...
CVE-2020-29663
CVE-2020-29663 affects Icinga 2. Versions affected: 2.8.0–2.11.7 and 2.12.2. Root cause: revoked certificates due for renewal are renewed automatically, bypassing the CRL check. Impact: certificate revocation not enforced for renewals (attack surface in TLS trust). Mitigation: upgrade to fixed re...