20 Mar
2023
20 Mar
'23
12:02 p.m.
Branch: refs/heads/2.2.0
Home: https://github.com/tribe29/checkmk
Commit: 59449b95fa983ec1a9314bf60a90600a6051e759
https://github.com/tribe29/checkmk/commit/59449b95fa983ec1a9314bf60a90600a6…
Author: Timotheus Bachinger <timotheus.bachinger(a)tribe29.com>
Date: 2023-03-20 (Mon, 20 Mar 2023)
Changed paths:
M cmk/gui/plugins/wato/check_parameters/interfaces.py
Log Message:
-----------
Adapt rule defaults for discards
See SUP-13226 for the "why"
Change-Id: Ica1e6672110a9e5b5088bbbc2e26f71fd2452e19
JIRA-Ref: SUP-13226
Commit: 382292a0a411ca08f4da0b7dbbc1314e07109b47
https://github.com/tribe29/checkmk/commit/382292a0a411ca08f4da0b7dbbc1314e0…
Author: Mathias Laurin <mathias.laurin(a)tribe29.com>
Date: 2023-03-20 (Mon, 20 Mar 2023)
Changed paths:
M cmk/base/agent_based/confcheckers.py
M cmk/base/agent_based/discovery/_discovery.py
M cmk/base/agent_based/discovery/_host_labels.py
M cmk/base/agent_based/discovery/autodiscovery.py
M cmk/base/agent_based/discovery/commandline.py
M cmk/base/agent_based/discovery/preview.py
M cmk/base/automations/check_mk.py
M cmk/base/config.py
M cmk/base/modes/check_mk.py
M cmk/checkers/__init__.py
M cmk/checkers/_api.py
M tests/unit/cmk/base/agent_based/discovery/test_discovery.py
Log Message:
-----------
Split host_label* off section_label
They are not used together at the same places, hence they are
different entities.
Change-Id: I68563c41454a0196ed7b4c0d0ec1ec95625b6ab3
Commit: 753a7477aa32069aeecdb4fbd18d08d5ed1542f2
https://github.com/tribe29/checkmk/commit/753a7477aa32069aeecdb4fbd18d08d5e…
Author: Mathias Laurin <mathias.laurin(a)tribe29.com>
Date: 2023-03-20 (Mon, 20 Mar 2023)
Changed paths:
M cmk/base/agent_based/data_provider.py
M cmk/base/agent_based/discovery/_host_labels.py
M tests/unit/cmk/base/agent_based/test_data_provider_parsed_sections_resolver.py
Log Message:
-----------
Remove unused section_plugin from ResolvedResult
Change-Id: I41dd8d3fb5becb7640e5aa9f8807895f97005d83
Commit: e546377a16528d7005e6728ce80294841568e2ce
https://github.com/tribe29/checkmk/commit/e546377a16528d7005e6728ce80294841…
Author: Mathias Laurin <mathias.laurin(a)tribe29.com>
Date: 2023-03-20 (Mon, 20 Mar 2023)
Changed paths:
M cmk/base/agent_based/confcheckers.py
Log Message:
-----------
Check API: Handle impedance mismatch ASAP
Change-Id: Id33c3cc8ba2f1dab713c7a11d7a486298f1d69de
Commit: 22acb86ed5724ac5d581b29cea50ad854df1b404
https://github.com/tribe29/checkmk/commit/22acb86ed5724ac5d581b29cea50ad854…
Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com>
Date: 2023-03-20 (Mon, 20 Mar 2023)
Changed paths:
A .werks/15069
M cmk/gui/http.py
M cmk/gui/main.py
M cmk/gui/plugins/sidebar/bookmarks.py
M cmk/gui/plugins/userdb/utils.py
M cmk/gui/utils/__init__.py
M cmk/gui/utils/escaping.py
M cmk/gui/valuespec.py
M cmk/notification_plugins/utils.py
A cmk/utils/escaping.py
A cmk/utils/urls.py
R tests/unit/cmk/gui/utils/test_init.py
M tests/unit/cmk/notifications/test_notification_plugins_utils.py
A tests/unit/cmk/utils/test_escaping.py
A tests/unit/cmk/utils/test_urls.py
Log Message:
-----------
15069 SEC Fix Email HTML Injection
Previously an authenticated attacker with permissions to configure HTML notifications was
able to inject HTML into E-Mails via <i>Insert HTML section between body and
table</i>.
All versions up to 1.6. are subject to this vulnerability.
To detect previous exploitation of this vulnerability one can check
<tt>etc/check_mk/conf.d/wato/notifications.mk</tt>. Search for
<tt>insert_html_section</tt> and malicious HTML.
This vulnerability was found internally. We calculated a CVSS3.1 score of 4.1 (Medium)
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N and assigned CVE-2023-22288.
This pick also includes these master changes:
- I56c6070e20d0af9dfcc914536ed6a764fce14838 (Move is_allowed_url to cmk.utils.urls)
- I70815426d5fd016b52678f54913c36220baeed77 (Move some escaping functions to
cmk.utils.escaping)
Change-Id: Ia186b9c710d83d4f063a3de09c6ef78af63b8381
Compare: https://github.com/tribe29/checkmk/compare/c1b3d510a527...22acb86ed572