1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
|
Candidate: CVE-2014-5448
PublicDate: 2014-10-20
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5448
http://www.openwall.com/lists/oss-security/2014/08/25
http://www.openwall.com/lists/oss-security/2014/08/25/1
Description:
Zarafa 5.00 uses world-readable permissions for the files in the log
directory, which allows local users to obtain sensitive information by
reading the log files.
Ubuntu-Description:
Notes:
Bugs:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658433
Priority: low
Discovered-by:
Assigned-to:
Patches_zarafa:
upstream_zarafa: needs-triage
lucid_zarafa: needs-triage
precise_zarafa: DNE
trusty_zarafa: DNE
utopic_zarafa: DNE
vivid_zarafa: DNE
devel_zarafa: DNE
|