DebianDEBIAN:DSA-2221-1:2350C[SECURITY] [DSA 2221-1] Mojolicious security update
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
5.7 Medium
AI Score
Confidence
Low
0.012 Low
EPSS
Percentile
85.1%
Debian Security Advisory DSA-2221-1 [email protected]
http://www.debian.org/security/ Moritz Muehlenhoff
April 19, 2011 http://www.debian.org/security/faq
Package : libmojolicious-perl
Vulnerability : directory traversal
Problem type : remote
Debian-specific: no
CVE ID : CVE-2011-1589
Debian Bug : 622952
Viacheslav Tykhanovskyi discovered a directory traversal vulnerability in
Mojolicious, a Perl Web Application Framework.
The oldstable distribution (lenny) doesn't contain libmojolicious-perl.
For the stable distribution (squeeze), this problem has been fixed in
version 0.999926-1+squeeze1.
For the unstable distribution (sid), this problem has been fixed in
version 1.16-1.
We recommend that you upgrade your libmojolicious-perl packages.
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/
Mailing list: [email protected]
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 6 | all | libmojolicious-perl | < 0.999926-1+squeeze1 | libmojolicious-perl_0.999926-1+squeeze1_all.deb |
Related
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
5.7 Medium
AI Score
Confidence
Low
0.012 Low
EPSS
Percentile
85.1%