Web interface buffer overflow
Alex Clifford
alex.c at axxin.com
Wed Sep 4 02:27:54 CEST 2013
Hi,
I'm running Nagios 3.5 and have setup a number of basic checks successfully. From these I have 5 hosts utilising check_nrpe!check_disk just fine. However, one of them throws errors when viewing the Service check's details in the web interface. The page doesn't fully render so I lose access to the Service Commands table. The apache error log shows the following when loading http://axops01/nagios/cgi-bin/extinfo.cgi?type=2&host=mail&service=Check+Disk+Usage
-----
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] *** buffer overflow detected ***: /usr/local/nagios/sbin/extinfo.cgi terminated, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] ======= Backtrace: =========, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /lib/x86_64-linux-gnu/libc.so.6(__fortify_fail+0x37)[0x7f479f0dd817], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /lib/x86_64-linux-gnu/libc.so.6(+0x109710)[0x7f479f0dc710], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /lib/x86_64-linux-gnu/libc.so.6(+0x108b79)[0x7f479f0dbb79], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /lib/x86_64-linux-gnu/libc.so.6(_IO_default_xsputn+0xdd)[0x7f479f04f13d], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /lib/x86_64-linux-gnu/libc.so.6(_IO_vfprintf+0x1d42)[0x7f479f01d702], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /lib/x86_64-linux-gnu/libc.so.6(__vsprintf_chk+0x94)[0x7f479f0dbc14], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /lib/x86_64-linux-gnu/libc.so.6(__sprintf_chk+0x7d)[0x7f479f0dbb5d], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /usr/local/nagios/sbin/extinfo.cgi[0x40d39f], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /usr/local/nagios/sbin/extinfo.cgi[0x406869], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /usr/local/nagios/sbin/extinfo.cgi[0x401d0c], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xed)[0x7f479eff476d], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] /usr/local/nagios/sbin/extinfo.cgi[0x402f45], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] ======= Memory map: ========, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 00400000-00446000 r-xp 00000000 fc:04 1709712 /usr/local/nagios/sbin/extinfo.cgi, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 00645000-00646000 r--p 00045000 fc:04 1709712 /usr/local/nagios/sbin/extinfo.cgi, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 00646000-00647000 rw-p 00046000 fc:04 1709712 /usr/local/nagios/sbin/extinfo.cgi, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 00647000-0064b000 rw-p 00000000 00:00 0 , referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 01d24000-01d45000 rw-p 00000000 00:00 0 [heap], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479eaf4000-7f479eb09000 r-xp 00000000 fc:04 1048620 /lib/x86_64-linux-gnu/libgcc_s.so.1, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479eb09000-7f479ed08000 ---p 00015000 fc:04 1048620 /lib/x86_64-linux-gnu/libgcc_s.so.1, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479ed08000-7f479ed09000 r--p 00014000 fc:04 1048620 /lib/x86_64-linux-gnu/libgcc_s.so.1, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479ed09000-7f479ed0a000 rw-p 00015000 fc:04 1048620 /lib/x86_64-linux-gnu/libgcc_s.so.1, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479ed0a000-7f479efd3000 r--p 00000000 fc:04 1709631 /usr/lib/locale/locale-archive, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479efd3000-7f479f188000 r-xp 00000000, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] fc:04 1052255 /lib/x86_64-linux-gnu/libc-2.15.so, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f188000-7f479f387000 ---p 001b5000 fc:04 1052255 /lib/x86_64-linux-gnu/libc-2.15.so, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f387000-7f479f38b000 r--p 001b4000 fc:04 1052255 /lib/x86_64-linux-gnu/libc-2.15.so, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f38b000-7f479f38d000 rw-p 001b8000 fc:04 1052255 /lib/x86_64-linux-gnu/libc-2.15.so, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f38d000-7f479f392000 rw-p 00000000 00:00 0 , referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f392000-7f479f3b4000 r-xp 00000000 fc:04 1052269 /lib/x86_64-linux-gnu/ld-2.15.so, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f5a1000-7f479f5a2000 rw-p 00000000 00:00 0 , referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f5a2000-7f479f5a9000 r--s 00000000 fc:04 1707473 /usr/lib/x86_64-linux-gnu/gconv/gconv-modules.cache, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f5a9000-7f479f5ac000 rw-p 00000000 00:00 0 , referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f5b1000-7f479f5b4000 rw-p 00000000 00:00 0 , referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f5b4000-7f479f5b5000 r--p 00022000 fc:04 1052269 /lib/x86_64-linux-gnu/ld-2.15.so, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7f479f5b5000-7f479f5b7000 rw-p 00023000 fc:04 1052269 /lib/x86_64-linux-gnu/ld-, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 2.15.so, referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7fffeb1ee000-7fffeb20f000 rw-p 00000000 00:00 0 [stack], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] 7fffeb28d000-7fffeb28e000 r-xp 00000000 00:00 0 [vdso], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
[Wed Sep 04 10:19:49 2013] [error] [client 172.16.0.84] ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall], referer: http://axops01/nagios/cgi-bin/status.cgi?host=all
-----
Has any one seen this before and is it a known bug? I have attempted to remove the service check and recreate it but it hasn't fixed the issue.
Thanks
--
Alex Clifford | IT Network Engineer
Axxin Pty Ltd
E| alex.c at axxin.com
W| www.axxin.com
Australian Office: A| 576 Swan St, Richmond, VIC, Australia 3121 P| + 61 (0) 3 9329 1167 F| + 61 (0) 3 9818 8577
USA Office: A| 4370 La Jolla Village Drive, Suite 400, San Diego, CA, 92122 P|+ 1 858 736 9160 F| + 1 858 346 9300
This communication may contain confidential or copyright information of Axxin Pty Ltd (ABN 43 120 905 839). If you are not an intended recipient, you must not keep, forward, copy, use, save or rely on this communication and any such action is unauthorised and prohibited. If you have received this communication in error, please reply to this email to notify the sender of its incorrect delivery, and then delete both it and your reply.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.monitoring-lists.org/archive/users/attachments/20130904/503b87ec/attachment.html>
-------------- next part --------------
------------------------------------------------------------------------------
Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more!
Discover the easy way to master current and previous Microsoft technologies
and advance your career. Get an incredible 1,500+ hours of step-by-step
tutorial videos with LearnDevNow. Subscribe today and save!
http://pubads.g.doubleclick.net/gampad/clk?id=58040911&iu=/4140/ostg.clktrk
-------------- next part --------------
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue.
::: Messages without supporting info will risk being sent to /dev/null
More information about the Users
mailing list