VYPR

Reportbug

by Debian

CVEs (3)

  • CVE-2014-0479Aug 6, 2014
    risk 0.00cvss epss 0.03

    reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compare_versions and reportbug/checkversions.py.

  • CVE-2005-0625Feb 28, 2005
    risk 0.00cvss epss 0.00

    reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd.

  • CVE-2005-0624Feb 28, 2005
    risk 0.00cvss epss 0.00

    reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords.