Summary: | <www-apache/mod_auth_openid-0.8: Insecure database permissions session ID leak vulnerability (CVE-2012-2760) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | the_eccentric |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | apache-bugs |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://secunia.com/advisories/49247/ | ||
Whiteboard: | ~3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
the_eccentric
2012-05-23 14:09:11 UTC
From secunia security advisory at $URL Version 0.8 is now in the tree. As no version of this package ever was stable no stabilization process is required here. (In reply to Lars Wendler (Polynomial-C) from comment #2) > Version 0.8 is now in the tree. As no version of this package ever was > stable no stabilization process is required here. Thank you. Please drop 0.6 and then we can get this bug closed up. Maintainer(s), please drop the vulnerable version(s). Thank you! Maintainer timeout, cleanup done, closing noglsa. |