| Description: | In the default debug configuration a debug log was stored without proper protection in /tmp and in a proxy configuration session data was stored without proper protection in /tmp. This both could leak private user attributes and sensitive login tokens during the login procedure to other user on the webserver.
|