A security flaw was found in NethServer Cockpit.
All NethServer 7 machines with
nethserver-cockpit package installed.
NethServer 6 milestone is not affected.
All NethServer 7 machines where
nethserver-cockpit is not installed, are not affected.
Make sure to have installed latest release of
Updates will be released to master mirror on Tuesday, March 26 2019 at 9:00 CET.
To install the update:
yum clean all && yum update nethserver-cockpit
Further details will be available from the link above on Wednesday, March 27 2019.
The disclosure process has been already discussed in this thread.