Updated monit packages fix security vulnerability
Publication date: 14 Nov 2016Modification date: 13 Nov 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-7067
Description
The forms in Monit's Service Manager are vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host, disable/enable monitoring for a specific service (CVE-2016-7067).
References
SRPMS
5/core
- monit-5.20.0-1.mga5