The Nagios components in EPEL are outdated and vulnerable. Some of the vulnerabilities are critical. There are several vulnerabilities and possible exploits reported in the last months, for example: https://legalhackers.com/advisories/Nagios-Exploit-Command-Injection-CVE-2016-9565-2008-4796.html https://legalhackers.com/advisories/Nagios-Exploit-Root-PrivEsc-CVE-2016-9566.html New versions and/or patches of Nagios are available.
I am testing updated nagios packages in this copr https://copr.fedorainfracloud.org/coprs/smooge/Nagios_Update/ These move around a couple of directories to match the newer layout and Fedora/RHEL rules for layout. Please let me know if they work for you or what things I need to fix so I can do so to get this into production.
nagios-4.2.4-2.el7 has been submitted as an update to Fedora EPEL 7. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0f3297a19b
nagios-4.2.4-2.el7 has been pushed to the Fedora EPEL 7 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0f3297a19b
nagios-4.2.4-2.el7 has been pushed to the Fedora EPEL 7 stable repository. If problems still persist, please make note of it in this bug report.