Blog

New about IT monitoring from the experts behind openITCOCKPIT

openITCOCKPIT and Log4j - CVE-2021-44228

14.12.2021

Is openITCOCKPIT affected by CVE-2021-44228?

No. openITCOCKPIT is not affected by the critical Log4j security vulnerability CVE-2021-44228. openITCOCKPIT itself is written in PHP and is not using or depending on any Java code.

Are any used components affected?

No. None of the backend components used by openITCOCKPIT is affected by CVE-2021-44228.

What about custom checks?

If you have installed any additional software on your openITCOCKPIT server like custom check plugins, you have to check these plugins by yourself. Even if it is very unlikely that a check plugin is implemented in Java, you should check your manually install plugins to be sure.

Why this post?

Many admins are concerned these days which software is using Log4j under the hood. We just want to inform you that openITCOCKPIT and all it used components are not affected and that no action is required.


Your openITCOCKPIT Team

openITCOCKPIT 4.3.3 released

13.12.2021

Today we have released the next version of openITCOCKPIT 4.3.3.

Security: Update Grafana to v8.3.1 to resolve high severity security issue CVE-2021-43798

We updated the Grafana version used by openITCOCKPIT to 8.3.2, which resolves a critical security issue within Grafana. More information can be found in the official Grafana Blog

Due to the Grafana instance shipped with openITCOCKPIT is running inside a Docker Container, only files located in the Docker container where affected by this.

Graphite error: Could not connect: [99] Cannot assign requested address

We resolved an issue with Statusengine, that the TCP connections to Graphite where not terminated correctly and left alive with the state TIME_WAIT.

openITCOCKPIT 4.3.2 released

26.11.2021

Today we have released the next version of openITCOCKPIT 4.3.2.

openITCOCKPIT 4.3.2 resolves an issue with the login on satellite systems. This only affects users of the distributed monitoring module.

openITCOCKPIT 4.3.1 released

15.11.2021

Today we have released the next version of openITCOCKPIT 4.3.1.

openITCOCKPIT 4.3.1 is a minor release with contains bug fixes for several issues.

We added a calendar widget to the dashboards. To improve the system performance, we disabled the Docker Proxy by default #1186 and also fixed a issue with slow Naemon start-ups.

openITCOCKPIT 4.3.0 released

18.10.2021

Today we have released the next version of openITCOCKPIT 4.3.0.

openITCOCKPIT 4.3.0 is packed with new features and bug fixes. We added an i-doit importer to the ImportModule, upgraded Checkmk to version 2 and added support for Debian 11 Bullseye.

Please read to article to know anything about potential breaking changes!