Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 501
Alerts This Week
Warning Icon 1 501

Ubuntu 14.04 LTS USN-3215-1 Moderate: Munin File Overwrite Risk

ubuntu
Calendar Grey March 2, 2017
Dist Ubuntu Esm H88
A vulnerability found in Munin may lead to unauthorized file overwrites. To safeguard against this potential remote exploit, it is advisable to upgrade your Ubuntu system.
Munin could be made to overwrite files.

Summary

Munin could be made to overwrite files.

Software Description:

- munin: Network-wide graphing framework

Details:

It was discovered that Munin incorrectly handled CGI graphs. A remote

attacker could use this issue to overwrite arbitrary files as the www-data

user.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
  munin                           2.0.19-3ubuntu0.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-3215-1

CVE-2017-6188

March 02, 2017

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.