Source: openhpi
Severity: important
Tags: security

Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-3248

On Debian /var/lib/openhpi/ isn't world-writable, but still
world-readable. Can you investigate whether that's a real issue
or otherwise mitigated in the Debian packagin?

Cheers,
        Moritz


-- 
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

Reply via email to