pkg-perl-maintainers team mailing list archive

Thread
Date

[Bug 863678] [NEW] [CVE-2011-2766] authentication bypass

To: pkg-perl-maintainers@xxxxxxxxxxxxxxxxxxx
From: Dominic Hargreaves <dom@xxxxxxxx>
Date: Fri, 30 Sep 2011 21:31:25 -0000
Reply-to: Bug 863678 <863678@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

*** This bug is a security vulnerability ***

Public security bug reported:

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=607479 provides
information about an authentication bypass vulnerability in libfcgi-
perl. Looks like this affects maverick, natty and oneiric.

** Affects: libfcgi-perl (Ubuntu)
     Importance: Undecided
         Status: New

** Visibility changed to: Public

** Description changed:

  http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=607479 provides
  information about an authentication bypass vulnerability in libfcgi-
- perl. Looks like this supports maverick, natty and oneiric.
+ perl. Looks like this affects maverick, natty and oneiric.

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2766

-- 
You received this bug notification because you are a member of Debian
Perl Group, which is subscribed to libfcgi-perl in Ubuntu.
https://bugs.launchpad.net/bugs/863678

Title:
  [CVE-2011-2766] authentication bypass

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libfcgi-perl/+bug/863678/+subscriptions

Follow ups

[Bug 863678] Re: [CVE-2011-2766] authentication bypass
From: James Page, 2012-06-11
[Bug 863678]
From: Tyler Hicks, 2011-10-01
[Bug 863678] [NEW] [CVE-2011-2766] authentication bypass
From: Dominic Hargreaves, 2011-09-30

References

[Bug 863678] [NEW] [CVE-2011-2766] authentication bypass
From: Dominic Hargreaves, 2011-09-30