Candidate: CVE-2010-2058
PublicDate: 2010-06-07 17:13:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2058
 http://www.openwall.com/lists/oss-security/2010/06/01/13
Description:
 setup.py in Prewikka 0.9.14 installs prewikka.conf with world-readable
 permissions, which allows local users to obtain the SQL database password.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584469
 https://bugs.gentoo.org/show_bug.cgi?id=270056
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_prewikka:
 upstream: https://dev.prelude-technologies.com/projects/prewikka/repository/revisions/17e38c310410be1b7811152172cda4438936063d/diff/setup.py
upstream_prewikka: released (1.0.0-1.1)
dapper_prewikka: DNE
hardy_prewikka: ignored (reached end-of-life)
jaunty_prewikka: ignored (reached end-of-life)
karmic_prewikka: ignored (reached end-of-life)
lucid_prewikka: ignored (reached end-of-life)
maverick_prewikka: ignored (reached end-of-life)
natty_prewikka: ignored (reached end-of-life)
oneiric_prewikka: ignored (reached end-of-life)
precise_prewikka: ignored (reached end-of-life)
precise/esm_prewikka: DNE (precise was needs-triage)
quantal_prewikka: ignored (reached end-of-life)
raring_prewikka: ignored (reached end-of-life)
saucy_prewikka: ignored (reached end-of-life)
trusty_prewikka: not-affected (1.0.0-1.3)
trusty/esm_prewikka: DNE (trusty was not-affected [1.0.0-1.3])
utopic_prewikka: ignored (reached end-of-life)
vivid_prewikka: ignored (reached end-of-life)
vivid/stable-phone-overlay_prewikka: DNE
vivid/ubuntu-core_prewikka: DNE
wily_prewikka: ignored (reached end-of-life)
xenial_prewikka: not-affected (1.0.0-1.3)
yakkety_prewikka: ignored (reached end-of-life)
zesty_prewikka: ignored (reached end-of-life)
artful_prewikka: ignored (reached end-of-life)
bionic_prewikka: not-affected (1.0.0-1.3)
cosmic_prewikka: not-affected (1.0.0-1.3)
devel_prewikka: not-affected (1.0.0-1.3)