Package: revelation
Dear maintainer,
Recently you fixed one or more security problems and as a result you closed
this bug. These problems were not serious enough for a Debian Security
Advisory, so they are now on my radar for fixing in the following suites
through point releases:
squeeze (6.0.7)
tags 680059 patch
thanks
Hello Stefan,
I talk about this issue with Mikel Olasagasti an upstream developer and
he plan to fix it but he can't do it until the end of the month.
Meantime he advice me some quick fixes like simply disabling FPM
exporter or warn about is it an insecure format.
Fina
forwarded 680059
https://bitbucket.org/erikg/revelation/issue/78/fpm-exporter-doesnt-encrypt-password-files
thanks
Hello,
I just take a look on this bug and it does not seem to be fixed upstream.
So I create an issue on the upstream bug tracker.
p.s. : I am not the maintainer of this package.
Package: revelation
Version: 0.4.13-1
Severity: grave
Tags: security
Justification: user security hole
Hey,
it seems that the revelation password manager has an issue in export
function for the Figaro Password Manager format. A quick test seems to
reveal that it uses in fact the XML (unencrypted)
4 matches
Mail list logo
