Debian Linux Security Advisory 3502-1 - Ralf Schlatterbeck discovered an information leak in roundup, a web-based issue tracking system. An authenticated attacker could use it to see sensitive details about other users, including their hashed password.
783b99ece6eadfaa0c8a05583cb9cafd408831e2343e51aa29fcd780d7dea37e