From c1289de1eff4c0b4b2cd47e61b2273970e327009 Mon Sep 17 00:00:00 2001 From: Joey Hess Date: Sat, 31 May 2008 20:16:18 -0400 Subject: cve id --- debian/changelog | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'debian/changelog') diff --git a/debian/changelog b/debian/changelog index 7a3f6061f..02796394b 100644 --- a/debian/changelog +++ b/debian/changelog @@ -11,7 +11,7 @@ ikiwiki (2.48) unstable; urgency=high * Fix security hole that occurred if openid and passwordauth were both enabled. passwordauth would allow logging in as a known openid, with an - empty password. Closes: #483770 + empty password. Closes: #483770 (CVE-2008-0169) * Add rel=nofollow to edit links. This may prevent some spiders from pounding on the cgi following edit links. * passwordauth: If Authen::Passphrase is installed, use it to store -- cgit v1.2.3