*** This bug is a security vulnerability ***
Public security bug reported:
There is a bug in Apache::AuthDBI version 1.05, so that it behaves as if
Apache::AuthDBI::DEBUG = 2 was set.
So any login is logged (with readable password) in /var/log/apache2/error_log.
The bug is fixed in 1.06, so this version should be used.
** Affects: libapache-dbi-perl (Ubuntu)
Importance: Undecided
Status: New
--
Bug in Apache::AuthDBI publishes passwords
https://bugs.launchpad.net/bugs/195559
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
