Mandrake Security Advisory MDVSA-2009:054 (nagios)

The remote host is missing an update to nagios announced via advisory MDVSA-2009:054.
To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.
A vulnerability has been identified and corrected in nagios: Cross-site scripting (XSS) vulnerability in Nagios allows remote attackers to inject arbitrary web script or HTML via unknown vectors, a different vulnerability than CVE-2007-5624 and CVE-2008-1360 (CVE-2007-5803). The updated packages have been upgraded to the latest version of nagios to prevent this. Affected: Corporate 4.0