So debian are distributing vulnerable Chromium since nearly
a month? There is exploit (not sure about which OSes) in the
wild.
Debian are not commenting on this on this mailing list.
Right?
Some more exploit vectors from the FD list:
https://seclists.org/fulldisclosure/2020/Nov/13
Partial results:
1. mutt (text email client) exposes ~/.mutt/muttrc,
which might contain the imap password in plaintext.
2. Some time ago on a multiuser debian mirror we found a lot of data,
including the
2 matches
Mail list logo
