Candidate: CVE-2008-6549
PublicDate: 2009-03-30 01:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6549
 http://moinmo.in/SecurityFixes
Description:
 The password_checker function in config/multiconfig.py in MoinMoin 1.6.1
 uses the cracklib and python-crack features even though they are not
 thread-safe, which allows remote attackers to cause a denial of service
 (segmentation fault and crash) via unknown vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
CVSS: 

Patches_moin:
 upstream: http://hg.moinmo.in/moin/1.6/rev/49db7eb1d421
upstream_moin: released (1.6.2)
dapper_moin: not-affected (code not present)
gutsy_moin: needed (reached end-of-life)
hardy_moin: not-affected (code not present)
intrepid_moin: not-affected (1.7.1-1ubuntu1.1)
jaunty_moin: not-affected (1.8.2-2ubuntu2)
devel_moin: not-affected (1.8.2-2ubuntu2)