Package: simpleid Version: 0.8.1-14 Severity: grave Tags: security The identity files (in /var/lib/simpleid/identities) expect user passwords to be given as MD5 hashes of the actual passwords, but MD5 is generally considered broken and should probably not be used to store user passwords.
-- System Information: Debian Release: stretch/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.3.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
