[USN-3971-1] Monit vulnerabilities
mike.salvatore at canonical.com
Wed May 8 20:05:50 UTC 2019
Ubuntu Security Notice USN-3971-1
May 08, 2019
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 19.04
- Ubuntu 18.10
Several security issues were fixed in Monit
- monit: utility for monitoring and managing daemons or similar programs
Zack Flack discovered that Monit incorrectly handled certain input. A remote
authenticated user could exploit this to conduct cross-site scripting (XSS)
Zack Flack discovered a buffer overread when Monit decoded certain crafted URLs.
An attacker could exploit this to leak potentially sensitive information.
The problem can be corrected by updating your system to the following
In general, a standard system update will make all the necessary changes.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 833 bytes
Desc: OpenPGP digital signature
More information about the ubuntu-security-announce