pkg-perl-maintainers team mailing list archive

Thread
Date

[Bug 1829016] Re: CVE-2019-12046: anonymous session allowed when tokens are stored in session DB

To: pkg-perl-maintainers@xxxxxxxxxxxxxxxxxxx
From: Steve Beattie <sbeattie@xxxxxxxxxx>
Date: Wed, 15 May 2019 23:12:20 -0000
Reply-to: Bug 1829016 <1829016@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Making public as the issues are public elsewhere.

** Information type changed from Private Security to Public Security

** Changed in: lemonldap-ng (Ubuntu)
       Status: New => Confirmed

** Changed in: lemonldap-ng (Ubuntu)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of Debian
Perl Group, which is subscribed to lemonldap-ng in Ubuntu.
https://bugs.launchpad.net/bugs/1829016

Title:
  CVE-2019-12046: anonymous session allowed when tokens are stored in
  session DB

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lemonldap-ng/+bug/1829016/+subscriptions