Bug number - 614302

Part of package: dtc-common.

Bug description:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
Debian Bug report logs -  #614302 CVE-2011-0436: new users' unencrypted passwords emailed to site admin
Package:      dtc-common; Maintainer for dtc-common is Thomas Goirand <zigo@debian.org>; Source for dtc-common is src:dtc (PTS, buildd, popcon).
Reported by: Ansgar Burchardt <ansgar@2008.43-1.org>
Date: Sun, 20 Feb 2011 22:06:01 UTC
Severity: serious
Tags: security, upstream
Found in version dtc/0.29.17-1
Fixed in version dtc/0.29.17-1+lenny1
Done: Thomas Goirand <zigo@debian.org>
Bug is archived. No further changes may be made.

All x-patch and x-diff attachments.

Patch	Author	Date
0002-Fixes-CVE-2011-0436-password-being-mailed-in-clear-t.patch	Thomas Goirand <thomas@goirand.fr>	Tue, 22 Feb 2011 18:03:12 +0800

Original bug report here.