Family: Debian Local Security Checks --> Category: infos
[DSA015] DSA-015-1 sash Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Versions of the sash package prior to 3.4-4 did not clone
/etc/shadow properly, causing it to be made world-readable.
This package only exists in stable, so if you are running unstable you won't
see a bugfix unless you use the resources from the bottom of this message to
the proper configuration.
We recommend you upgrade your sash package immediately.
Solution : http://www.debian.org/security/2001/dsa-015
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.