The Gentoo init script for webfs uses world-readable permissions for /var/log/webfsd.log, which allows local users to have unspecified impact by reading the file.
Debian Bug report logs -
#701638
CVE-2013-0347
Package:
webfs;
Maintainer for webfs is Mats Erik Andersson <matsandersson@gisladiskerse>; Source for webfs is src:webfs (PTS, buildd, popcon)
Reported by: Moritz Muehlenhoff <jmm@debianorg>
Date: Mon, 25 Feb 2013 15:27:05 UTC
Severity: important
Tags: security
Fixe ...