1
Candidate: CVE-2012-2742
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2742
5
http://www.openwall.com/lists/oss-security/2012/06/18/1
6
http://oss.codepoet.no/revelation/issue/61/file-format-magic-string-version-mismatch
8
Revelation 0.4.13-2 and earlier uses only the first 32 characters of a
9
password followed by a sequence of zeros, which reduces the entropy and
10
makes it easier for context-dependent attackers to crack passwords and
11
obtain access to keys via a brute-force attack.
15
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=633088
16
https://bugs.launchpad.net/bugs/1014326
22
upstream_revelation: released (0.4.11-10)
23
hardy_revelation: ignored (reached end-of-life)
24
lucid_revelation: ignored (reached end-of-life)
25
natty_revelation: ignored (reached end-of-life)
26
oneiric_revelation: ignored (reached end-of-life)
27
precise_revelation: not-affected (0.4.11-10ubuntu1)
28
quantal_revelation: not-affected
29
raring_revelation: not-affected
30
saucy_revelation: not-affected
31
devel_revelation: not-affected