CVE-2007-6418

Publication date 18 December 2007

Last updated 24 July 2024

Ubuntu priority

The libdspam7-drv-mysql cron job in Debian GNU/Linux includes the MySQL dspam database password in a command line argument, which might allow local users to read the password by listing the process and its arguments.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
dspam	7.10 gutsy	Fixed 3.6.8-5ubuntu1.2
	7.04 feisty	Fixed 3.6.8-4ubuntu1.2
	6.10 edgy	Fixed 3.6.8-1ubuntu0.1
	6.06 LTS dapper	Fixed 3.6.4-4ubuntu0.1

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2007-6418