[Fedora-i18n-bugs] [Bug 508945] CVE-2009-2260 stardict: network queries may expose sensitive information
bugzilla at redhat.com
bugzilla at redhat.com
Wed Jul 1 16:14:51 UTC 2009
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=508945
Tomas Hoger <thoger at redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status Whiteboard|impact=low?,source=debian,r |impact=low,source=debian,re
|eported=20090626,public=200 |ported=20090626,public=2009
|90626,cvss2=2.6/AV:N/AC:H/A |0626,cvss2=2.6/AV:N/AC:H/Au
|u:N/C:P/I:N/A:N |:N/C:P/I:N/A:N
--- Comment #4 from Tomas Hoger <thoger at redhat.com> 2009-07-01 12:14:51 EDT ---
Thank you for opening upstream bug. I've seen their forums yesterday,
overwhelmed with spam.
Nevertheless, change of the default is likely to be a one-liner change in
src/conf.cpp. I think we should disable by default, even if upstream
disagrees. Definitely a default I'd like to see in future rhel6.
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the Fedora-i18n-bugs
mailing list