Debian: DSA-3883-1: rt-authen-externalauth security update

(Jun 15) It was discovered that RT::Authen::ExternalAuth, an external authentication module for Request Tracker, is vulnerable to timing side-channel attacks for user passwords. Only ExternalAuth in DBI (database) mode is vulnerable.

Read More

Leave a Reply