Candidate: CVE-2018-6532
PublicDate: 2018-02-27 19:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6532
 https://github.com/Icinga/icinga2/pull/6103
Description:
 An issue was discovered in Icinga 2.x through 2.8.1. By sending specially
 crafted (authenticated and unauthenticated) requests, an attacker can
 exhaust a lot of memory on the server side, triggering the OOM killer.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_icinga:
upstream_icinga: needs-triage
precise/esm_icinga: DNE
trusty_icinga: ignored (reached end-of-life)
trusty/esm_icinga: DNE (trusty was needs-triage)
xenial_icinga: ignored (end of standard support, was needs-triage)
artful_icinga: ignored (reached end-of-life)
bionic_icinga: needs-triage
cosmic_icinga: ignored (reached end-of-life)
disco_icinga: ignored (reached end-of-life)
eoan_icinga: ignored (reached end-of-life)
focal_icinga: DNE
groovy_icinga: DNE
hirsute_icinga: DNE
impish_icinga: DNE
jammy_icinga: DNE
devel_icinga: DNE