Control: severity -1 important
Control: retitle -1 mysql-server: CVE-2013-2162: Insecure creation of the
credential file debian.cnf
Hi
On Sat, Jun 08, 2013 at 12:26:35PM +0200, vladz wrote:
> Package: mysql-server
> Version: 5.5.31+dfsg-0+wheezy1
> Tags: security
>
> The file "/etc/mysql/debian
Package: mysql-server
Version: 5.5.31+dfsg-0+wheezy1
Tags: security
The file "/etc/mysql/debian.cnf", which contains plain text credentials
for the "debian-sys-maint" mysql user, is created in an insecure manner
during the package installation phase. This can lead a non-privileged
local user to
2 matches
Mail list logo
