Source: openhpi Severity: important Tags: security Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-3248
On Debian /var/lib/openhpi/ isn't world-writable, but still
world-readable. Can you investigate whether that's a real issue
or otherwise mitigated in the Debian packagin?
Cheers,
Moritz
_______________________________________________
Secure-testing-team mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-team
