PNP4Nagios: Root privilege escalation

PNP4Nagios: Root privilege escalation A vulnerability in PNP4Nagios which may allow local attackers to gain root privileges. pnp4nagios 2018-06-24 2018-06-24 637640 local 0.6.26-r9 0.6.26-r9

PNP4Nagios is an addon for the Nagios Network Monitoring System.

It was found that PHP4Nagios creates files owned by an unprivileged user that are used by root.

A local attacker could escalate privileges to root.

There is no known workaround at this time.

All PNP4Nagios users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose
      ">=net-analyzer/pnp4nagios-0.6.26-r9"

CVE-2017-16834 b-man irishluck83