This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
This update for monit fixes the following issues :
- CVE-2016-7067: A malicious attacker could have used a
cross-site request forgery vulnerability to trick an
authenticated user to perform monit actions.
Monit was updated to 5.20, containing all upstream improvements and
The following tracked packaging bugs were fixed :
- disable sslv3 according to RFC7568 (boo#974763)
- fixed pid file directory (boo#971647)
See also :
Update the affected monit packages.
Risk factor :
Medium / CVSS Base Score : 4.3