[Python-apps-team] Bug#716718: Bug#716718: nagstamon: CVE-2013-4114: credentials exposure
chaica at ohmytux.com
chaica at ohmytux.com
Fri Jul 12 06:44:00 UTC 2013
On Thu, 11 Jul 2013 21:20:09 +0300, Henri Salo <henri at nerv.fi> wrote:
> Package: nagstamon
> Version: 0.9.9-1
> Severity: important
> Tags: security
>
> Nagstamon (prior 0.9.10): Monitor server user credentials exposure in
> automated
> requests to get update information
>
> References:
> http://openwall.com/lists/oss-security/2013/07/11/3
> http://nagstamon.ifw-dresden.de/docs/security/
> https://bugs.gentoo.org/show_bug.cgi?id=476538
> https://bugzilla.redhat.com/show_bug.cgi?id=983673
Hi,
Thanks for your bug report, it's appreciated. I was aware of this
situation and I'm packaging the 0.9.9.1 to solve this issue. Will be
ready soon.
Bye,
Carl Chenet
More information about the Python-apps-team
mailing list