Joined: 12 May 2004
|Posted: Sat May 17, 2014 7:26 pm Post subject: [ GLSA 201405-11 ] Bacula: Information disclosure
|Gentoo Linux Security Advisory
Title: Bacula: Information disclosure (GLSA 201405-11)
Date: May 17, 2014
A vulnerability in Bacula may allow remote attackers to obtain
Bacula is a network based backup suite.
Vulnerable: < 5.2.12
Unaffected: >= 5.2.12
Architectures: All supported architectures
Bacula does not properly enforce console access control lists.
A remote authenticated attacker may be able to bypass restrictions to
obtain sensitive information.
There is no known workaround at this time.
All Bacula users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=app-backup/bacula-5.2.12"