Skip to content

Icinga Web 2 v2.8.2
Compare
Choose a tag to compare
@nilmerg nilmerg released this 19 Aug 09:05
v2.8.2
This tag was signed with the committer’s verified signature. The key has expired.
nilmerg Johannes Meyer
GPG key ID: E5AC28E26B4B43A4
Expired
Learn about vigilant mode.
8a89839

What's New in Version 2.8.2

Notice: This is a security release. It is recommended to immediately upgrade to this release.

You can find all issues related to this release on the respective milestone.

Path Traversal Vulnerability

The vulnerability in question allows an attacker to access arbitrary files which are readable by the process running Icinga Web 2. Technical details can be found at the corresponding CVE-2020-24368 and in the issue below.

  • Possible path traversal when serving static image files #4226

Broken Negated Filters with PostgreSQL

We've also included a small non-security related fix. Searching for e.g. servicegroup!=support leads to an error instead of the desired result when using a PostgreSQL database.

  • Single negated membership filter fails with PostgreSQL #4196
Assets 2
Loading