[icinga-devel] Icinga 1.4.1 released

Michael Friedrich michael.friedrich at univie.ac.at
Wed Jun 8 11:22:58 CEST 2011


Icinga 1.4.0 <https://www.icinga.org/2011/05/11/icinga-v1-4-released/> 
contained several bugs which now have been fixed on the core and web 
side of development :-)

The XSS vulnerability 
<http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/80502?do=post_view_threaded> 
in the Classic UI reported by Stefan Schurtz has been resolved too. 
Download <https://sourceforge.net/projects/icinga/files/> Icinga 1.4.1 now!

*Core/ClassicUI/IDOUtils*

* core: fix retain status file over an init script reload #1579 
<https://dev.icinga.org/issues/1579>

* classic ui: fix cross site scripting vulnerability in config.cgi on 
config expander arguments #1605 <https://dev.icinga.org/issues/1605>
* classic ui: better handling of writing to cgi.log in cmd.cgi #1161 
<https://dev.icinga.org/issues/1161>
* classic ui: fixing tac.cgi header problems with counting and adding 
pending and descritptions #1505 <https://dev.icinga.org/issues/1505> 
#1506 <https://dev.icinga.org/issues/1506> #1508 
<https://dev.icinga.org/issues/1508>
* classic ui: corrected behaviour of pending states in tac header #1508 
<https://dev.icinga.org/issues/1508>

* install: fix event handlers cmd file location in contrib #1501 
<https://dev.icinga.org/issues/1501>

*Web/API*

* fix LDAP auth allows empty passwords #1596 
<https://dev.icinga.org/issues/1596>
* fix ilter information wrong after saving cronk #1525 
<https://dev.icinga.org/issues/1525>
* fix prefs growing endlessly in Icinga-Web causing lot's of traffic 
#1513 <https://dev.icinga.org/issues/1513>
* fix cronks page make-up #1509 <https://dev.icinga.org/issues/1509>
* principals now work with wildcards
* provided IE JS fix

*Docs*

* CFLAGS for FreeBSD #1604 <https://dev.icinga.org/issues/1604>
* show_tac_header_pending #1529 <https://dev.icinga.org/issues/1529>

As usual -- please report any bugs/feature requests/etc to our 
development tracker <https://dev.icinga.org> and/or community channels 
<https://www.icinga.org/support/>! :-)

-- 
DI (FH) Michael Friedrich

Vienna University Computer Center
Universitaetsstrasse 7 A-1010 Vienna, Austria

email: 	michael.friedrich at univie.ac.at
phone: 	+43 1 4277 14359
mobile: +43 664 60277 14359
fax: 	+43 1 4277 14338
web:	http://www.univie.ac.at/zid
	http://www.aco.net

Icinga Core&  IDOUtils Developer
http://www.icinga.org

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.icinga.org/pipermail/icinga-devel/attachments/20110608/7f8dffbc/attachment.html>


More information about the icinga-devel mailing list