Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2025:02783-1

Опубликовано: 13 авг. 2025
Источник: suse-cvrf

Описание

Security update for icinga2

This update for icinga2 fixes the following issues:

  • CVE-2025-48057: A certificate incorrectly treated as valid can allow an attacker to impersonate a trusted node (bsc#1243747).

Список пакетов

SUSE Linux Enterprise Module for HPC 12
icinga2-2.8.2-3.11.2
icinga2-bin-2.8.2-3.11.2
icinga2-common-2.8.2-3.11.2
icinga2-doc-2.8.2-3.11.2
icinga2-ido-mysql-2.8.2-3.11.2
icinga2-ido-pgsql-2.8.2-3.11.2
icinga2-libs-2.8.2-3.11.2
vim-icinga2-2.8.2-3.11.2

Ссылки

Описание

Icinga 2 is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. Prior to versions 2.12.12, 2.13.12, and 2.14.6, the VerifyCertificate() function can be tricked into incorrectly treating certificates as valid. This allows an attacker to send a malicious certificate request that is then treated as a renewal of an already existing certificate, resulting in the attacker obtaining a valid certificate that can be used to impersonate trusted nodes. This only occurs when Icinga 2 is built with OpenSSL older than version 1.1.0. This issue has been patched in versions 2.12.12, 2.13.12, and 2.14.6.

Затронутые продукты
SUSE Linux Enterprise Module for HPC 12:icinga2-2.8.2-3.11.2
SUSE Linux Enterprise Module for HPC 12:icinga2-bin-2.8.2-3.11.2
SUSE Linux Enterprise Module for HPC 12:icinga2-common-2.8.2-3.11.2
SUSE Linux Enterprise Module for HPC 12:icinga2-doc-2.8.2-3.11.2
Ссылки