Ubuntu Security Notice USN-698-1 – It was discovered that Nagios did not properly parse commands submitted using the web interface. An authenticated user could use a custom form or a browser addon to bypass security restrictions and submit unauthorized commands.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/73358/USN-698-1.txt
Source: https://packetstormsecurity.com/files/73358/Ubuntu-Security-Notice-698-1.html