1
Candidate: CVE-2013-0345
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0345
6
varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/
7
directory and the log files in the directory, which allows local users to
8
obtain sensitive information by reading the files. NOTE: some of these
9
details are obtained from third party information.
12
jdstrand> /var/log/varnish is 750 in Ubuntu 11.10 and higher
19
upstream_varnish: needs-triage
20
hardy_varnish: ignored (reached end-of-life)
21
lucid_varnish: ignored (reached end-of-life)
22
oneiric_varnish: not-affected
23
precise_varnish: not-affected
24
quantal_varnish: not-affected
25
raring_varnish: not-affected
26
saucy_varnish: not-affected
27
devel_varnish: not-affected