-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 22 May 2026 21:00:00 +1000
Source: nagios4
Binary: nagios4 nagios4-cgi nagios4-cgi-dbgsym nagios4-core nagios4-core-dbgsym
Architecture: armhf
Version: 4.4.6-4+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: armhf Build Daemon (arm-ubc-06) <buildd_arm64-arm-ubc-06@buildd.debian.org>
Changed-By: Russell Stuart <russell-debian@stuart.id.au>
Description:
 nagios4    - host/service/network monitoring and management system
 nagios4-cgi - cgi files for nagios4
 nagios4-core - host/service/network monitoring and management system core files
Closes: 1136340
Changes:
 nagios4 (4.4.6-4+deb12u1) bookworm-security; urgency=high
 .
   * CSRF Security Fix backported from upstream 4.5.12 commit
     e5ed38e53a5d65721520c7c67be0746d63da28cb (cgi/cmd.c and
     html/index.php.in).  See
     https://www.nagios.com/security-disclosures/nagios-core/4-5-12/
     for the upstream disclosure.  No CVE assigned.
     Closes: #1136340.
   * This can break third party integrations that POST to cmd.cgi
     without first setting NagFormId (the CSRF check fails).  Upstream
     PR 1055 has been added as a workaround - see README.Debian.
Checksums-Sha1:
 1bb1f44319c7bedfaa7206eb0ccd91ee5ccf3358 5644276 nagios4-cgi-dbgsym_4.4.6-4+deb12u1_armhf.deb
 f4917b603142098524598aed4b023bfaf169adfa 1188960 nagios4-cgi_4.4.6-4+deb12u1_armhf.deb
 ae8818bed7224094e62d2cb059aa0606f65b945f 751124 nagios4-core-dbgsym_4.4.6-4+deb12u1_armhf.deb
 743782a60607658186d8113663600bd36095948a 222600 nagios4-core_4.4.6-4+deb12u1_armhf.deb
 cfa6e7dc21826cb3168ad699624fa663f30cf531 10482 nagios4_4.4.6-4+deb12u1_armhf-buildd.buildinfo
 a7ef776f3a224128c37c6f657774729c4bffe1df 16296 nagios4_4.4.6-4+deb12u1_armhf.deb
Checksums-Sha256:
 195207e31b585093af3852c3667083261a9563cf487f152cdc32f477b5c7f47c 5644276 nagios4-cgi-dbgsym_4.4.6-4+deb12u1_armhf.deb
 52dea20d00e1b65a78b2adee03d5eb67b01b272d7d142dac0a94d3b533c4de3f 1188960 nagios4-cgi_4.4.6-4+deb12u1_armhf.deb
 f082b4020dfbe82cfdbbfaa31238704967f8ee30dc85ff60e168b34539710496 751124 nagios4-core-dbgsym_4.4.6-4+deb12u1_armhf.deb
 6da58a252ab4a64e2822c490aeeba6d3e3b3dcb9b72e6c395d27611dd7603032 222600 nagios4-core_4.4.6-4+deb12u1_armhf.deb
 a5061bd6cf3551b7f0e5ca754207d40241d935b000d36a49477d14e7c6ff5ff0 10482 nagios4_4.4.6-4+deb12u1_armhf-buildd.buildinfo
 90716da74498f66e1d7bb4355dc0f397a29f8fa1e04e4c54d12a92fa141b15ab 16296 nagios4_4.4.6-4+deb12u1_armhf.deb
Files:
 e70d5920558bfdd4848b40bcd4699364 5644276 debug optional nagios4-cgi-dbgsym_4.4.6-4+deb12u1_armhf.deb
 a0161973a729b6b64cef8e8ee24afcb1 1188960 net optional nagios4-cgi_4.4.6-4+deb12u1_armhf.deb
 6f6c16325ed5b921e98fea994f78b391 751124 debug optional nagios4-core-dbgsym_4.4.6-4+deb12u1_armhf.deb
 79c2f73f6d59cb794901dfee5d5a1e5a 222600 net optional nagios4-core_4.4.6-4+deb12u1_armhf.deb
 6babe81257a483bff51bffb733b746dc 10482 net optional nagios4_4.4.6-4+deb12u1_armhf-buildd.buildinfo
 c0d4cf06c7702041a12a3ec0849fccad 16296 net optional nagios4_4.4.6-4+deb12u1_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=VDgK
-----END PGP SIGNATURE-----