Package: icinga2 | Debian Sources

Package: icinga2 / 2.13.6-2+deb12u2

Metadata

Package	Version	Patches format
icinga2	2.13.6-2+deb12u2	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
21_config_changes \| (download)	etc/icinga2/conf.d/users.conf \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	configuration changes for debian - change icingaadmin mail address to root@localhost
postgres checkcommand.patch \| (download)	itl/plugins-contrib.d/databases.conf \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	use check_postgres path as provided by check-postgres package.
CVE 2024 49369.patch \| (download)	lib/base/tlsstream.cpp \| 64 49 + 15 - 0 ! lib/base/tlsstream.hpp \| 8 3 + 5 - 0 ! 2 files changed, 52 insertions(+), 20 deletions(-)	security: fix tls certificate validation bypass . The previous validation in set_verify_callback() could be bypassed, tricking Icinga 2 into treating invalid certificates as valid. To fix this, the validation checks were moved into the IsVerifyOK() function. . This is tracked as CVE-2024-49369, more details will be published at a later time.

Patch

File delta

Description

21_config_changes | (download)

etc/icinga2/conf.d/users.conf | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 configuration changes for debian
    - change icingaadmin mail address to root@localhost

postgres checkcommand.patch | (download)

itl/plugins-contrib.d/databases.conf | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 use check_postgres path as provided by check-postgres package.

CVE 2024 49369.patch | (download)

lib/base/tlsstream.cpp | 64 49 + 15 - 0 !
lib/base/tlsstream.hpp | 8 3 + 5 - 0 !
2 files changed, 52 insertions(+), 20 deletions(-)

 security: fix tls certificate validation bypass
 .
 The previous validation in set_verify_callback() could be bypassed, tricking
 Icinga 2 into treating invalid certificates as valid. To fix this, the
 validation checks were moved into the IsVerifyOK() function.
 .
 This is tracked as CVE-2024-49369, more details will be published at a later time.