Bug#574066: CVE-2010-0044 cookie weakness
gregor herrmann
gregoa at debian.org
Tue Mar 16 16:15:40 UTC 2010
On Mon, 15 Mar 2010 22:38:26 -0400, Michael Gilbert wrote:
> the following CVE (Common Vulnerabilities & Exposures) id was
> published for safari. I'm not sure if their version of pubsub relates
> to this package, but it should be checked. If it does not, please
> close the bug. Thanks.
I can't find anything related to web cookies in IPC::PubSub.
From the POD:
NAME
IPC::PubSub - Interprocess Publish/Subscribe channels
DESCRIPTION
This module provides a simple API for publishing messages to *channels*
and for subscribing to them.
When a *message* is published on a channel, all subscribers currently in
that channel will get it on their next "get" or "get_all" call.
Currently, it offers three backends: "DBM_Deep" for on-disk storage,
"Memcached" for possibly multi-host storage, and "PlainHash" for
single-process storage.
"grep -ir cookie ." reveals nothing, there are no web-related
dependencies etc.
Cheers,
gregor
--
.''`. http://info.comodo.priv.at/ -- GPG Key IDs: 0x8649AA06, 0x00F3CFE4
: :' : Debian GNU/Linux user, admin, & developer - http://www.debian.org/
`. `' Member of VIBE!AT & SPI, fellow of Free Software Foundation Europe
`- NP: Cat Stevens: Tuesdays Dead
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-perl-maintainers/attachments/20100316/3736933d/attachment.pgp>
More information about the pkg-perl-maintainers
mailing list