This bug was fixed in the package epiphany-browser - 3.22.6-0ubuntu1
---------------
epiphany-browser (3.22.6-0ubuntu1) yakkety-security; urgency=medium
* SECURITY UPDATE: Saved passwords were viewable by a man-in-the-middle
attack website. This has been mitigated by moving all existing saved
http passwords to https. If a website you use is http-only, you can
find your old password in Preferences>Privacy>Manage Passwords.
- Fixed in new upstream security release 3.22.6 (LP: #1661805)
+ New upstream release also fixes adblocker being too aggressive
and breaking Twitter
-- Jeremy Bicha <[email protected]> Sun, 19 Mar 2017 18:46:17 -0400
** Changed in: epiphany-browser (Ubuntu Yakkety)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1661805
Title:
Saved passwords for HTTPS sites can be accessed by HTTP sites
To manage notifications about this bug go to:
https://bugs.launchpad.net/epiphany-browser/+bug/1661805/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
