Branch: refs/heads/2.3.0
Home: https://github.com/Checkmk/checkmk
Commit: dc96e56ad529524660e28a7a9f8747fb23088d57
https://github.com/Checkmk/checkmk/commit/dc96e56ad529524660e28a7a9f8747fb2…
Author: Niko Wenselowski <niko.wenselowski(a)checkmk.com>
Date: 2024-06-14 (Fri, 14 Jun 2024)
Changed paths:
A .werks/16593.md
M cmk/base/plugins/agent_based/jenkins_nodes.py
M tests/unit/cmk/base/plugins/agent_based/test_jenkins_nodes.py
Log Message:
-----------
16593 FIX jenkins_nodes: Fix handling of multi-label nodes
When using the Jenkins node check in an environment that had multiple labels
assigned to a build node, the detection of busy and idle executors and the
mode had been wrong.
This werk fixes the way this data is obtained and should produce the expected
values.
Change-Id: I0b2d645c42854331bcd265fbfcdaf4ad979756c6
To unsubscribe from these emails, change your notification settings at https://github.com/Checkmk/checkmk/settings/notifications
Branch: refs/heads/master
Home: https://github.com/Checkmk/checkmk
Commit: 26dcc2cb5385f826d10313e8c6e89dcdd0c09cb2
https://github.com/Checkmk/checkmk/commit/26dcc2cb5385f826d10313e8c6e89dcdd…
Author: Niko Wenselowski <niko.wenselowski(a)checkmk.com>
Date: 2024-06-14 (Fri, 14 Jun 2024)
Changed paths:
A .werks/16593.md
M cmk/plugins/jenkins/agent_based/jenkins_nodes.py
M tests/unit/cmk/plugins/jenkins/agent_based/test_jenkins_nodes.py
Log Message:
-----------
16593 FIX jenkins_nodes: Fix handling of multi-label nodes
When using the Jenkins node check in an environment that had multiple labels
assigned to a build node, the detection of busy and idle executors and the
mode had been wrong.
This werk fixes the way this data is obtained and should produce the expected
values.
Change-Id: I0b2d645c42854331bcd265fbfcdaf4ad979756c6
Commit: 4869e666abece7a55b4f0caa1a32720eb0819ab2
https://github.com/Checkmk/checkmk/commit/4869e666abece7a55b4f0caa1a32720eb…
Author: Niko Wenselowski <niko.wenselowski(a)checkmk.com>
Date: 2024-06-14 (Fri, 14 Jun 2024)
Changed paths:
M cmk/plugins/jenkins/agent_based/jenkins_nodes.py
M tests/unit/cmk/plugins/jenkins/agent_based/test_jenkins_nodes.py
Log Message:
-----------
jenkins_node: remove trailing whitespace from mode
Change-Id: I56d97e2eb127273db8ae168da27bbe02a5d087d2
Compare: https://github.com/Checkmk/checkmk/compare/4e3ebaf523c3...4869e666abec
To unsubscribe from these emails, change your notification settings at https://github.com/Checkmk/checkmk/settings/notifications
Branch: refs/heads/2.2.0
Home: https://github.com/Checkmk/checkmk
Commit: 4c991078e4eaa9758859fcd7e903eda98a583163
https://github.com/Checkmk/checkmk/commit/4c991078e4eaa9758859fcd7e903eda98…
Author: Mathias Laurin <mathias.laurin(a)checkmk.com>
Date: 2024-06-14 (Fri, 14 Jun 2024)
Changed paths:
A .werks/16512
Log Message:
-----------
16512 FIX Restart scheduler after setting "use the status of a service"
The following scenario would break scheduling
* make host passive with `@service` -> internally sets next check to 0
* make host active again, for example, `@up`
-> calls `scheduleHostJob()` with `host->nextCheck()`, which is 0
-> the invalid timestamp is rejected
-> scheduling fails and has to be retriggered by the user
SUP-14635
Change-Id: If48579cbd371349263d19b8adcf417b112509f50
To unsubscribe from these emails, change your notification settings at https://github.com/Checkmk/checkmk/settings/notifications
Branch: refs/heads/2.3.0
Home: https://github.com/Checkmk/checkmk
Commit: 62fde67c5908672a301cd612685eb23abdf7c61a
https://github.com/Checkmk/checkmk/commit/62fde67c5908672a301cd612685eb23ab…
Author: Maximilian Wirtz <maximilian.wirtz(a)checkmk.com>
Date: 2024-06-14 (Fri, 14 Jun 2024)
Changed paths:
A .werks/17009.md
M cmk/gui/views/inventory/__init__.py
Log Message:
-----------
17009 SEC XSS in inventory tree
Prior to this Werk an attacker with control over an agent was able to inject HTML in the output which was then rendered in the inventory tree of the coresponding host.
This problem exists only if the rule *Do hardware/software inventory* is set for the compromised agent/host.
We found this vulnerability internally.
**Affected Versions:**
* 2.3.0
* 2.2.0
* 2.1.0
* 2.0.0
**Mitigations**:
If you are unable to patch you can disable inventory scanning for all hosts.
**Indicators of Compromise:**
You can check `var/check_mk/inventory/` for inventories with embedded HTML.
This only indicates current 'attacks'.
Previous attacks (where the agent does not output the payload anymore) are not discoverable after some time (caching).
**Vulnerability Management:**
We have rated the issue with a CVSS Score of 6.5 (Medium) with the following CVSS vector:
`CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L`
We assigned CVE-2024-5741 to this vulnerability.
**Changes:**
This Werk adds sanitation to the HTML output.
Change-Id: I5b93ac74128384c910fb17c54906bd62ee785d34
To unsubscribe from these emails, change your notification settings at https://github.com/Checkmk/checkmk/settings/notifications
Branch: refs/heads/2.3.0
Home: https://github.com/Checkmk/checkmk
Commit: 3462105efcc950ef85ef23ecf0263507707c47c8
https://github.com/Checkmk/checkmk/commit/3462105efcc950ef85ef23ecf02635077…
Author: Mathias Laurin <mathias.laurin(a)checkmk.com>
Date: 2024-06-14 (Fri, 14 Jun 2024)
Changed paths:
A .werks/16512.md
Log Message:
-----------
16512 FIX Restart scheduler after setting "use the status of a service"
The following scenario would break scheduling
* make host passive with `@service` -> internally sets next check to 0
* make host active again, for example, `@up`
-> calls `scheduleHostJob()` with `host->nextCheck()`, which is 0
-> the invalid timestamp is rejected
-> scheduling fails and has to be retriggered by the user
SUP-14635
Change-Id: If48579cbd371349263d19b8adcf417b112509f50
To unsubscribe from these emails, change your notification settings at https://github.com/Checkmk/checkmk/settings/notifications