Package "prewikka"

Name:	prewikka
Description:	Security Information Management System [ Web Interface ]
Latest version:	1.0.0-1.1
Release:	precise (12.04)
Level:	base
Repository:	universe

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "prewikka"

All arch deb package

APT INSTALL

Other versions of "prewikka" in Precise

No other version of this package is available in the Precise release.

Changelog

Version: DELETED	2012-03-06 10:51:22 UTC
No changelog for deleted or moved packages.

Version: 1.0.0-1.1 2011-12-18 16:48:44 UTC

prewikka (1.0.0-1.1) unstable; urgency=high * Non-maintainer upload by the Security Team. * Install prewikka.conf file with mode 0640 to prevent disclosure of db credentials (CVE-2010-2058; Closes: #584469). NOTE to maintainer: I've seen there is a chmod 640 at the end of the postinst script but this is on the one hand prone to a race condition and on the other hand not always effective. -- Nico Golde Thu, 10 Jun 2010 15:50:02 +0200

584469	prewikka: Permission security vulnerability - Debian Bug report logs
CVE-2010-2058	setup.py in Prewikka 0.9.14 installs prewikka.conf with world-readable permissions, which allows local users to obtain the SQL database password.

Version: DELETED	2011-12-18 14:35:41 UTC
No changelog for deleted or moved packages.

About - Send Feedback to @ubuntu_updates

Package "prewikka"

Links

Download "prewikka"

Other versions of "prewikka" in Precise

Changelog

Share this page

Bookmarks

Latest updates

updates

proposed

PPA updates