Package: liferea Version: 1.0.27-1 Severity: important Tags: security patch
Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for liferea. CVE-2007-5751[0]: | Liferea before 1.4.6 uses weak permissions (0644) for the | feedlist.opml backup file, which allows local users to | obtain credentials. If you fix this vulnerability please also include the CVE id in your changelog entry. You can find a patch for this on: http://liferea.svn.sourceforge.net/viewvc/liferea/trunk/liferea/src/export.c?r1=3392&r2=3512&view=patch For further information: [0] http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5751 Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgpr7z8HWcd5a.pgp
Description: PGP signature