icinga2-2.15.2-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2026:10113-1 Final 1 1 2026-01-29T00:00:00Z current 2026-01-29T00:00:00Z 2026-01-29T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z icinga2-2.15.2-1.1 on GA media These are all security issues fixed in the icinga2-2.15.2-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2026-10113 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2026-24413/ SUSE CVE CVE-2026-24413 page openSUSE Tumbleweed icinga2-2.15.2-1.1 icinga2-bin-2.15.2-1.1 icinga2-common-2.15.2-1.1 icinga2-doc-2.15.2-1.1 icinga2-ido-mysql-2.15.2-1.1 icinga2-ido-pgsql-2.15.2-1.1 nano-icinga2-2.15.2-1.1 vim-icinga2-2.15.2-1.1 icinga2-2.15.2-1.1 as a component of openSUSE Tumbleweed icinga2-bin-2.15.2-1.1 as a component of openSUSE Tumbleweed icinga2-common-2.15.2-1.1 as a component of openSUSE Tumbleweed icinga2-doc-2.15.2-1.1 as a component of openSUSE Tumbleweed icinga2-ido-mysql-2.15.2-1.1 as a component of openSUSE Tumbleweed icinga2-ido-pgsql-2.15.2-1.1 as a component of openSUSE Tumbleweed nano-icinga2-2.15.2-1.1 as a component of openSUSE Tumbleweed vim-icinga2-2.15.2-1.1 as a component of openSUSE Tumbleweed Icinga 2 is an open source monitoring system. Starting in version 2.3.0 and prior to versions 2.13.14, 2.14.8, and 2.15.2, the Icinga 2 MSI did not set appropriate permissions for the `%ProgramData%\icinga2\var` folder on Windows. This resulted in the its contents - including the private key of the user and synced configuration - being readable by all local users. All installations on Windows are affected. Versions 2.13.14, 2.14.8, and 2.15.2 contains a fix. There are two possibilities to work around the issue without upgrading Icinga 2. Upgrade Icinga for Windows to at least version v1.13.4, v1.12.4, or v1.11.2. These version will automatically fix the ACLs for the Icinga 2 agent as well. Alternatively, manually update the ACL for the given folder `C:\ProgramData\icinga2\var` (and `C:\Program Files\WindowsPowerShell\modules\icinga-powershell-framework\certificate` to fix the issue for the Icinga for Windows as well) including every sub-folder and item to restrict access for general users, only allowing the Icinga service user and administrators access. CVE-2026-24413 openSUSE Tumbleweed:icinga2-2.15.2-1.1 openSUSE Tumbleweed:icinga2-bin-2.15.2-1.1 openSUSE Tumbleweed:icinga2-common-2.15.2-1.1 openSUSE Tumbleweed:icinga2-doc-2.15.2-1.1 openSUSE Tumbleweed:icinga2-ido-mysql-2.15.2-1.1 openSUSE Tumbleweed:icinga2-ido-pgsql-2.15.2-1.1 openSUSE Tumbleweed:nano-icinga2-2.15.2-1.1 openSUSE Tumbleweed:vim-icinga2-2.15.2-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-24413.html CVE-2026-24413 https://bugzilla.suse.com/1257482 SUSE Bug 1257482