CVE-2013-6048

The get_group_tree function in lib/Munin/Master/HTMLConfig.pm in Munin before 2.0.18 allows remote nodes to cause a denial of service (infinite loop and memory consumption in the munin-html process) via crafted multigraph data.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:munin-monitoring:munin:*:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.7:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.9:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.10:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.11:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.12:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.13:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.14:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.15:*:*:*:*:*:*:*
cpe:2.3:a:munin-monitoring:munin:2.0.16:*:*:*:*:*:*:*

History

No history.

Information

Published : 2013-12-13 18:55

Updated : 2024-02-04 18:16


NVD link : CVE-2013-6048

Mitre link : CVE-2013-6048

CVE.ORG link : CVE-2013-6048


JSON object : View

Products Affected

munin-monitoring

  • munin
CWE
CWE-20

Improper Input Validation