[checkmk-commits] [Checkmk/checkmk] f8975e: RMK on Linux: Improve deployment of systemd files ...

Branch: refs/heads/master Home: https://github.com/Checkmk/checkmk Commit: f8975e282b0e4a032f5511dff5d768531dde4b17 https://github.com/Checkmk/checkmk/commit/f8975e282b0e4a032f5511dff5d768531… Author: Jörg Herbel <joerg.herbel(a)checkmk.com> Date: 2024-09-24 (Tue, 24 Sep 2024) Changed paths: M agents/.f12 Log Message: ----------- RMK on Linux: Improve deployment of systemd files via bakery Use `FileFromSite` to deploy systemd setup script. This preserves the execute file permissions. Change-Id: I9a63850f6684cb3398e6418a88ee52c1dec58a43 Commit: 62dad742b1d10e26e42bdca2fcd6b3ec204a1f3d https://github.com/Checkmk/checkmk/commit/62dad742b1d10e26e42bdca2fcd6b3ec2… Author: Maximilian Wirtz <maximilian.wirtz(a)checkmk.com> Date: 2024-09-24 (Tue, 24 Sep 2024) Changed paths: A .werks/17145.md Log Message: ----------- 17145 SEC Information leak in mknotifyd When a notification context is sent to mknotifyd a "result message" is generated by mknotifyd and sent back so the original site so it can show if there were problems handling that notification. This result message could contain secrets that were not meant to be sent to remote sites, e.g. passwords/secrets. These secrets were not processed by the remote site but a rough site would have been able to retrieve these. This issue was found during internal review. *Affected Versions*: * 2.3.0 * 2.2.0 * 2.1.0 * 2.0.0 (EOL) *Vulnerability Management*: We have rated the issue with a CVSS Score of 5.3 Medium (`CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N`) and assigned `CVE-2024-6747`. CMK-13549 Change-Id: I9c2595018eb2ed383df0eb1eda0560a134bdc725 Compare: https://github.com/Checkmk/checkmk/compare/44917eee437e...62dad742b1d1 To unsubscribe from these emails, change your notification settings at https://github.com/Checkmk/checkmk/settings/notifications