Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: f09cdb4666d632309e038889d912f34c19ffefdd
https://github.com/tribe29/checkmk/commit/f09cdb4666d632309e038889d912f34c1…
Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
A .werks/15064
M cmk/base/api/agent_based/render.py
M cmk/base/plugins/agent_based/checkmk_agent.py
M cmk/base/plugins/agent_based/utils/checkmk.py
M tests/unit/cmk/base/plugins/agent_based/test_checkmk_agent.py
Log Message:
-----------
15064 Agent updater checks for certificate validity
The agent updater now reports about the status of the trusted certificates for agent signatures.
The status of those certificates is then checked by the service <i>Check_MK Agent</i> as follows:
LI: Warn if a certificate is corrupt
LI: Warn if a certificate is not valid anymore
LI: Warn if a certificate is about to become invalid
LI: Crit if there is no trusted certificate
LI: Warn/Crit if there will be no valid cert in 90/30 days.
Change-Id: Iece90fe4acc6f734915304e4d0ddc80dd21505e4
Branch: refs/heads/2.0.0
Home: https://github.com/tribe29/checkmk
Commit: d695ea23f05750ac947d7e1e2e5523ee34d8e4b5
https://github.com/tribe29/checkmk/commit/d695ea23f05750ac947d7e1e2e5523ee3…
Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
A .werks/15065
M cmk/utils/packaging.py
Log Message:
-----------
15065 SEC Path-Traversal in MKP storing
Previous to this Werk it was possible that an authenticated user with admin rights uploads a malicious MKP leading to a file creation with an attacker controlled path.
We thank Niko Wenselowsk (SVA) for reporting this issue.
<b>Affected versions are:</b>
LI: 2.0.0 previous to this Werk
LI: 2.1.0 previous to this Werk
LI: 1.6.0 is not affected
<b>Detection possibilities:</b>
A audit log is written when an extension package is uploaded.
You can look for a entry with <tt>Uploaded extension package</tt> follwed by a package name and version containing sequences of <tt>../</tt>.
<b>Vulnerability Management:</b>
We have rated the issue with a CVSS Score of 3.5 (low) with the following CVSS vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L.
We assigned CVE-2022-4884 to this vulnerability.
FEED-7598
Change-Id: I80f9e0047546a609e4d12aba30b353e201cfab1d
Branch: refs/heads/2.1.0
Home: https://github.com/tribe29/checkmk
Commit: b77c1d6235764fef51526ab8de4ec1ffa903a102
https://github.com/tribe29/checkmk/commit/b77c1d6235764fef51526ab8de4ec1ffa…
Author: Gav <gavin.mcguigan(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
A .werks/15056
M cmk/gui/fields/__init__.py
A cmk/gui/fields/custom_fields.py
A cmk/gui/plugins/openapi/endpoints/aux_tags/__init__.py
A cmk/gui/plugins/openapi/endpoints/aux_tags/schemas.py
M cmk/gui/plugins/openapi/restful_objects/request_schemas.py
M cmk/gui/plugins/openapi/restful_objects/type_defs.py
M cmk/gui/wato/pages/tags.py
M cmk/gui/watolib/tags.py
M cmk/utils/tags.py
M tests/testlib/rest_api_client.py
A tests/unit/cmk/gui/plugins/openapi/test_openapi_auxtags.py
Log Message:
-----------
15056 REST API: aux_tags: rest-api endpoint implementation
Change-Id: I960418d80c2f5b5d3d2d1a4626f116a7cc445ddf
Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: f52d53a3532f847f7840a4aa083d539f28137acd
https://github.com/tribe29/checkmk/commit/f52d53a3532f847f7840a4aa083d539f2…
Author: Sven Panne <sven.panne(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
M Makefile
M agents/wnx/Makefile
M livestatus/src/Makefile.am
M omd/Licenses.csv
R omd/packages/asio/asio-1.24.0-patched.tar.gz
R omd/packages/asio/asio.diff
R omd/packages/asio/create-archive
M packages/livestatus/src/CMakeLists.txt
A third_party/asio/asio-1.24.0-patched.tar.gz
A third_party/asio/asio.diff
A third_party/asio/create-archive
Log Message:
-----------
Move asio to third_party/.
Change-Id: I952f2b5d2e2a6ced2ddd46c601b04c6b2b21dfc6
Commit: 28f7661d9294d96809982f3ea960dd4cab63522d
https://github.com/tribe29/checkmk/commit/28f7661d9294d96809982f3ea960dd4ca…
Author: Sven Panne <sven.panne(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
M buildscripts/scripts/stages.yml
Log Message:
-----------
Added missing dependencies.
Change-Id: Ifd49e0d254dcbf848ce79d1adf353a004ef6b613
Compare: https://github.com/tribe29/checkmk/compare/5e4d9381873c...28f7661d9294
Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: 5e4d9381873cf96515280b3ceba9ae72b730b723
https://github.com/tribe29/checkmk/commit/5e4d9381873cf96515280b3ceba9ae72b…
Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
M cmk/base/plugins/agent_based/checkmk_agent.py
A cmk/base/plugins/agent_based/cmk_update_agent_status.py
M cmk/base/plugins/agent_based/utils/checkmk.py
M tests/unit/cmk/base/plugins/agent_based/test_checkmk_agent.py
Log Message:
-----------
Switch AgentUpdate-Section to JSON
So we can add new data more easily.
Change-Id: Id30ed3c8d12a8a5e0bafe3320f50ecebdfc01de8
Branch: refs/heads/2.1.0
Home: https://github.com/tribe29/checkmk
Commit: 55ab4d74652f811b3a9407446d93eeb51f0724a3
https://github.com/tribe29/checkmk/commit/55ab4d74652f811b3a9407446d93eeb51…
Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
A .werks/15065
M cmk/utils/packaging.py
Log Message:
-----------
15065 SEC Path-Traversal in MKP storing
Previous to this Werk it was possible that an authenticated user with admin rights uploads a malicious MKP leading to a file creation with an attacker controlled path.
We thank Niko Wenselowsk (SVA) for reporting this issue.
<b>Affected versions are:</b>
LI: 2.0.0 previous to this Werk
LI: 2.1.0 previous to this Werk
LI: 1.6.0 is not affected
<b>Detection possibilities:</b>
A audit log is written when an extension package is uploaded.
You can look for a entry with <tt>Uploaded extension package</tt> follwed by a package name and version containing sequences of <tt>../</tt>.
<b>Vulnerability Management:</b>
We have rated the issue with a CVSS Score of 3.5 (low) with the following CVSS vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L.
We assigned CVE-2022-4884 to this vulnerability.
FEED-7598
Change-Id: I80f9e0047546a609e4d12aba30b353e201cfab1d
Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: f4b3bf7564dd71ca4cb9792d1044001043d2c0ec
https://github.com/tribe29/checkmk/commit/f4b3bf7564dd71ca4cb9792d104400104…
Author: Sven Panne <sven.panne(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
M Makefile
M livestatus/src/Makefile.am
M packages/livestatus/run-ci
M scripts/find-python-files
R scripts/iwyu_tool.py
Log Message:
-----------
Use IWYU's own wrapper.
Change-Id: If98022c7133fa03540deeb5602204c50fd099670
Commit: 7ccb003bc3fce97380a23dce16867e26b441ccf0
https://github.com/tribe29/checkmk/commit/7ccb003bc3fce97380a23dce16867e26b…
Author: Sven Panne <sven.panne(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
M packages/livestatus/src/CMakeLists.txt
Log Message:
-----------
Consistently use root_repo_dir.
Change-Id: I9c5abc0fee9eec5303737ae7be65941eb536a26b
Commit: 4d12f32d6a0d19274a7546adec52cafc0c20f47d
https://github.com/tribe29/checkmk/commit/4d12f32d6a0d19274a7546adec52cafc0…
Author: Sven Panne <sven.panne(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
M Makefile
M agents/wnx/scripts/unpack_all.cmd
M agents/wnx/scripts/unpack_package.cmd
M livestatus/src/Makefile.am
M omd/Licenses.csv
R omd/packages/googletest/create-archive
R omd/packages/googletest/googletest-71140c3ca7-patched.tar.gz
R omd/packages/googletest/googletest.diff
M packages/livestatus/test/CMakeLists.txt
A third_party/googletest/create-archive
A third_party/googletest/googletest-71140c3ca7-patched.tar.gz
A third_party/googletest/googletest.diff
Log Message:
-----------
Move googletest to third_party/.
Change-Id: I255d9acd34e68a038b7816d6e9ec9f8cd23ed1c0
Compare: https://github.com/tribe29/checkmk/compare/aacb2030df00...4d12f32d6a0d
Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: aacb2030df0046a2950eaf1333dcdfc95aae2136
https://github.com/tribe29/checkmk/commit/aacb2030df0046a2950eaf1333dcdfc95…
Author: Sven Panne <sven.panne(a)tribe29.com>
Date: 2023-01-09 (Mon, 09 Jan 2023)
Changed paths:
M livestatus/src/Makefile.am
M packages/livestatus/run-ci
M scripts/find-python-files
R scripts/run-clang-tidy.py
Log Message:
-----------
Use Clang's own clang-tidy wrapper.
Change-Id: I1e8565de02dabc3f5b964aeb71deb12e103e66f4