CVE-2012-4678

munin-cgi-graph for Munin 2.0 rc4 does not delete temporary files, which allows remote attackers to cause a denial of service (disk consumption) via many requests to an image with unique parameters.

• How can I get the fixes?
• What do statuses mean?
• Patch details

References

• MITRE
• NVD
• Launchpad
• Debian

Other references

• http://www.openwall.com/lists/oss-security/2012/04/29/2
• http://www.openwall.com/lists/oss-security/2012/04/27/7
• http://www.openwall.com/lists/oss-security/2012/04/19/5
• http://www.openwall.com/lists/oss-security/2012/04/19/4
• http://www.openwall.com/lists/oss-security/2012/04/19/3
• http://www.openwall.com/lists/oss-security/2012/04/18/2
• http://www.openwall.com/lists/oss-security/2012/04/16/6
• http://www.openwall.com/lists/oss-security/2012/04/16/5
• https://www.cve.org/CVERecord?id=CVE-2012-4678