head 1.3; access; symbols pkgsrc-2013Q2:1.3.0.8 pkgsrc-2013Q2-base:1.3 pkgsrc-2012Q4:1.3.0.6 pkgsrc-2012Q4-base:1.3 pkgsrc-2011Q4:1.3.0.4 pkgsrc-2011Q4-base:1.3 pkgsrc-2011Q2:1.3.0.2 pkgsrc-2011Q2-base:1.3 pkgsrc-2009Q4:1.2.0.18 pkgsrc-2009Q4-base:1.2 pkgsrc-2009Q3:1.2.0.16 pkgsrc-2009Q3-base:1.2 pkgsrc-2009Q2:1.2.0.14 pkgsrc-2009Q2-base:1.2 pkgsrc-2009Q1:1.2.0.12 pkgsrc-2009Q1-base:1.2 pkgsrc-2008Q4:1.2.0.10 pkgsrc-2008Q4-base:1.2 pkgsrc-2008Q3:1.2.0.8 pkgsrc-2008Q3-base:1.2 cube-native-xorg:1.2.0.6 cube-native-xorg-base:1.2 pkgsrc-2008Q2:1.2.0.4 pkgsrc-2008Q2-base:1.2 cwrapper:1.2.0.2 pkgsrc-2008Q1:1.1.0.2 pkgsrc-2008Q1-base:1.1; locks; strict; comment @# @; 1.3 date 2010.03.09.02.07.38; author taca; state dead; branches; next 1.2; 1.2 date 2008.05.27.21.22.02; author tonnerre; state Exp; branches; next 1.1; 1.1 date 2008.03.22.15.00.14; author tonnerre; state Exp; branches; next ; desc @@ 1.3 log @Remove a zero size patch file. @ text @@ 1.2 log @Update the nagios-plugins package to version 1.4.11. This fixes various crashes on various architectures and system, such as, for example, the check_icmp bus error on sparc64. Changes in 1.4.4: - check_ntp is now written in C instead of Perl. - check_disk bugfixes. - check_udp2, check_udp and check_tcp are now united. - check_mailq now reports mailq errors better. - check_snmp now compiles with a sane amount of effort. Changes in 1.4.5: - Fixed bug in perl's is_hostname routine. Changes in 1.4.6: - check_ping and netutils.c now do less DNS lookups. - alloca.h related compile fixes. - check_swap now works on Solaris too. - check_disk perf data can now be monitored. - check_procs had a buffer overflow. - Fixed UNIX socket error handling. - check_by_ssh now can pass -q and -o to ssh. - GNUlib sync. - check_jabber can now return things different from a warning. Changes in 1.4.7: - check_procs uses /usr/ucb/ps on Solaris which fixes pst3 problems. - check_smtp does a non-broken HELO now. - check_icmp can now have a minimum number of required hosts and also works if running for a long time on BSDs. - check_ping timeout reduced. - Everybody can now execute SUID check plugins unless indicated otherwise to configure. Changes in 1.4.8: - check_disk now has an extra option for regex matching and grouping of FSes. - check_ntp various fixes. Changes in 1.4.9: - New plugin check_cluster (not built by pkgsrc). - check_by_ssh now has improved stderr/stdout handling options (-E/-S). - check_ldap, check_radius and check_pgsql compile fixes. - check_snmp 64-bit counter support. - Better underflow checking for check_time. - check_http output is more consistent now. - check_http HTTP redirect segfault fixes. - check_tcp doesn't segfault anymore when multiple expect strings are given. - check_tcp now supports -A to check if all expect strings match. Changes in 1.4.10: - check_http redirect buffer overflow vulnerability fixed (was fixed in pkgsrc before). - check_http now shuts down HTTP/1.1 keepalive connections cleanly. - check_ldaps doesn't guess anymore whether to use SSL or STARTTLS. - check_disk now calls stat on all file systems. - check_disk now supports the -L flag for local file system checks. - check_disk now supports -i/-I for ignoring paths/partitions by regex. - check_disk now supports -A to select all file systems explicitly. - check_disk now needs to have the -E flag passed before -p or -r/-R. - check_disk is no longer buggy when case sensitive and insensitive regexes are mixed. - check_dhcp now supports -u (unicast) to emulate a relay. - check_dhcp now lets you specify the MAC address in the request using -m. - check_dhcp -r and -s options now accept host names. - check_icmp no longer bus errors on various platforms. - check_smtp now handles multiple-packet server responses properly. - Negate command line options are no longer evaluated twice by the shell. - Negate commands to be run must now be fully qualified. - Negate can now remap custom states. - check_radius now supports radius-client-ng (was already in pkgsrc). - check_by_ssh now supports multiline output. - check_ntp now honors ntp flags. Changes in 1.4.10: - check_ntp returns UNKNOWN rather than WARNING if no jitter is available. - check_cluster now accept all valid characters in its thresholds. - check_ntp is now deprecated in favor of check_ntp_peer and check_ntp_time. - check_disk no longer reports OK if disk usage exceeds 100%. - check_load handles non-triplet arguments correctly now. - Nagios::Plugin updated to 0.22. @ text @@ 1.1 log @Fix SNMP GET reply buffer overflow in nagios-plugin-snmp version 1.4.3nb1 (CVE-2007-5623, ticket #16441) Approved-by: gdt, joerg @ text @a0 38 $NetBSD$ --- plugins/check_snmp.c.orig 2005-10-31 21:03:19.000000000 +0100 +++ plugins/check_snmp.c @@@@ -203,12 +203,16 @@@@ main (int argc, char **argv) ptr = output; - strcat(perfstr, "| "); + strncat(perfstr, "| ", sizeof(perfstr)-strlen(perfstr)-1); while (ptr) { char *foo; + size_t copylen; foo = strstr (ptr, delimiter); - strncat(perfstr, ptr, foo-ptr); + copylen = foo-ptr; + if (copylen > sizeof(perfstr)-strlen(perfstr)-1) + copylen = sizeof(perfstr)-strlen(perfstr)-1; + strncat(perfstr, ptr, copylen); ptr = foo; if (ptr == NULL) @@@@ -338,9 +342,11 @@@@ main (int argc, char **argv) i++; - char *str[MAX_INPUT_BUFFER]; - asprintf(str, "=%s%s;;;; ", show, type ? type : ""); - strcat(perfstr, *str); + strncat(perfstr, "=", sizeof(perfstr)-strlen(perfstr)-1); + strncat(perfstr, show, sizeof(perfstr)-strlen(perfstr)-1); + if (type) + strncat(perfstr, type, sizeof(perfstr)-strlen(perfstr)-1); + strncat(perfstr, " ", sizeof(perfstr)-strlen(perfstr)-1); } /* end while (ptr) */ @