Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 486
Alerts This Week
Warning Icon 1 486

Ubuntu 14.04 LTS USN-3215-2 Critical: Munin Regression Fix

ubuntu
Calendar Grey March 3, 2017
Dist Ubuntu Esm H88
Security Advisory USN-4621-1 outlines a bug in Nagios for Ubuntu 18.04, addressing complications arising from a previous patch.
USN-3215-1 introduced a regression in Munin.

Summary

USN-3215-1 introduced a regression in Munin.

Software Description:

- munin: Network-wide graphing framework

Details:

USN-3215-1 fixed a vulnerability in Munin. The upstream patch caused a

regression leading to errors being appended to the log file. This update

fixes the problem.

Original advisory details:

It was discovered that Munin incorrectly handled CGI graphs. A remote

attacker could use this issue to overwrite arbitrary files as the www-data

user.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
  munin                           2.0.19-3ubuntu0.3

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-3215-2

https://ubuntu.com/security/notices/USN-3215-1

https://bugs.launchpad.net/ubuntu/+source/munin/+bug/1669764

Severity
critical
Lowest
Low
Medium
High
Critical

March 03, 2017

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.