-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 22 May 2026 20:45:00 +1000
Source: nagios4
Binary: nagios4 nagios4-cgi nagios4-cgi-dbgsym nagios4-core nagios4-core-dbgsym
Architecture: i386
Version: 4.4.6-4.1+deb13u1
Distribution: trixie-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) <buildd_amd64-x86-conova-02@buildd.debian.org>
Changed-By: Russell Stuart <russell-debian@stuart.id.au>
Description:
 nagios4    - host/service/network monitoring and management system
 nagios4-cgi - cgi files for nagios4
 nagios4-core - host/service/network monitoring and management system core files
Closes: 1136340
Changes:
 nagios4 (4.4.6-4.1+deb13u1) trixie-security; urgency=high
 .
   * CSRF Security Fix backported from upstream 4.5.12 commit
     e5ed38e53a5d65721520c7c67be0746d63da28cb (cgi/cmd.c and
     html/index.php.in).  See
     https://www.nagios.com/security-disclosures/nagios-core/4-5-12/
     for the upstream disclosure.  No CVE assigned.
     Closes: #1136340.
   * This can break third party integrations that POST to cmd.cgi
     without first setting NagFormId (the CSRF check fails).  Upstream
     PR 1055 has been added as a workaround - see README.Debian.
Checksums-Sha1:
 9950c1f857af67b7abddf8e4b1af156921032684 4744072 nagios4-cgi-dbgsym_4.4.6-4.1+deb13u1_i386.deb
 e98ff4a38d38dc554898c77e2ef38c3d9598545d 1329464 nagios4-cgi_4.4.6-4.1+deb13u1_i386.deb
 806749989943b811643cdd6d6fcf26dda1170b7a 623104 nagios4-core-dbgsym_4.4.6-4.1+deb13u1_i386.deb
 1cd8faffe1568d1b2c3c91da29d34793debd74d2 264524 nagios4-core_4.4.6-4.1+deb13u1_i386.deb
 6fce041153b604e7899e75e6b766d3fb96ea4d42 10090 nagios4_4.4.6-4.1+deb13u1_i386-buildd.buildinfo
 91bc8136b669eff04f03f343c5050a7715ba3cac 16408 nagios4_4.4.6-4.1+deb13u1_i386.deb
Checksums-Sha256:
 eac2ba6ba4821c2f7d7defeccd85d365018306615da0e652957b15a5016fa22a 4744072 nagios4-cgi-dbgsym_4.4.6-4.1+deb13u1_i386.deb
 ae836f9aa2d9be1b27cfb0cc9e5d848f50b46a232c869606ad7258b2d074a564 1329464 nagios4-cgi_4.4.6-4.1+deb13u1_i386.deb
 2856268dcc46fee706c5e583c217d31b1b8cb18e3c091135104fb49433c93e32 623104 nagios4-core-dbgsym_4.4.6-4.1+deb13u1_i386.deb
 32a2937e4dd5cba5a6f71e893d876a92479f6e1d621c247f14d50d1c543ec61b 264524 nagios4-core_4.4.6-4.1+deb13u1_i386.deb
 8bf28d16c35c89892122fe9a1d550b9cbad8276b2958817df23c6740859904c9 10090 nagios4_4.4.6-4.1+deb13u1_i386-buildd.buildinfo
 805f3eede512bccd8891ea832a7d8504b1a1aa9e671c13f664e0309105835c75 16408 nagios4_4.4.6-4.1+deb13u1_i386.deb
Files:
 a6fa181aff9975e4c07242b4df66de15 4744072 debug optional nagios4-cgi-dbgsym_4.4.6-4.1+deb13u1_i386.deb
 4ee773d852907d9be507b46829ad0198 1329464 net optional nagios4-cgi_4.4.6-4.1+deb13u1_i386.deb
 75f429c3a775167ed011e6b41be766cc 623104 debug optional nagios4-core-dbgsym_4.4.6-4.1+deb13u1_i386.deb
 75193cfb4b8e1072331624270eb6bc1e 264524 net optional nagios4-core_4.4.6-4.1+deb13u1_i386.deb
 6928f46ff185125e8be4da7391be89fd 10090 net optional nagios4_4.4.6-4.1+deb13u1_i386-buildd.buildinfo
 76c716cb312885c25d02729189d147f9 16408 net optional nagios4_4.4.6-4.1+deb13u1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=LjgP
-----END PGP SIGNATURE-----