pkg-perl-maintainers team mailing list archive

Thread
Date

[Bug 1829016]

To: pkg-perl-maintainers@xxxxxxxxxxxxxxxxxxx
From: Alex Murray <alex.murray@xxxxxxxxxxxxx>
Date: Tue, 25 Jun 2019 12:31:00 -0000
Reply-to: Bug 1829016 <1829016@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Thanks for taking the time to report this bug and helping to make Ubuntu
better. Since the package referred to in this bug is in universe or
multiverse, it is community maintained. If you are able, I suggest
coordinating with upstream and posting a debdiff for this issue. When a
debdiff is available, members of the security team will review it and
publish the package. See the following link for more information:
https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures

-- 
You received this bug notification because you are a member of Debian
Perl Group, which is subscribed to lemonldap-ng in Ubuntu.
https://bugs.launchpad.net/bugs/1829016

Title:
  CVE-2019-12046: anonymous session allowed when tokens are stored in
  session DB

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lemonldap-ng/+bug/1829016/+subscriptions