An update that solves two vulnerabilities and has three fixes is now available.
This update for nagios fixes the following issues:
new nagios-exec-start-post script to fix boo#1003362
fix nagios_upgrade.sh writing to log file in user controlled directory (boo#1182398). The nagios_upgrade.sh script writes the logfile directly below /var/log/
nagios was updated to 4.4.6:
Fixed HARD OK states triggering on the maximum check attempt (#757)
Fix for CVE-2016-6209 (boo#989759) - The "corewindow" parameter (as in bringing this to our attention go to Dawid Golunski (boo#1014637)
This update was imported from the openSUSE:Leap:15.2:Update update project.
To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
openSUSE Backports SLE-15-SP2:
zypper in -t patch openSUSE-2021-735=1