abrt is vulnerable to information disclosure. The application would send confidential information such as usernames and passwords when reporting on crashes.
lists.fedoraproject.org/pipermail/package-announce/2011-December/071027.html
access.redhat.com/security/updates/classification/#low
bugzilla.redhat.com/show_bug.cgi?id=625485
bugzilla.redhat.com/show_bug.cgi?id=727494
bugzilla.redhat.com/show_bug.cgi?id=745976
bugzilla.redhat.com/show_bug.cgi?id=746727
bugzilla.redhat.com/show_bug.cgi?id=747594
bugzilla.redhat.com/show_bug.cgi?id=747624
bugzilla.redhat.com/show_bug.cgi?id=749100
bugzilla.redhat.com/show_bug.cgi?id=751068
bugzilla.redhat.com/show_bug.cgi?id=758366
bugzilla.redhat.com/show_bug.cgi?id=759375
bugzilla.redhat.com/show_bug.cgi?id=759377
bugzilla.redhat.com/show_bug.cgi?id=768377
bugzilla.redhat.com/show_bug.cgi?id=770357
bugzilla.redhat.com/show_bug.cgi?id=773242
bugzilla.redhat.com/show_bug.cgi?id=796176
bugzilla.redhat.com/show_bug.cgi?id=796216
bugzilla.redhat.com/show_bug.cgi?id=799027
bugzilla.redhat.com/show_bug.cgi?id=803618
bugzilla.redhat.com/show_bug.cgi?id=811147
bugzilla.redhat.com/show_bug.cgi?id=823411
docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.3_Technical_Notes/abrt.html#RHSA-2012-0841
exchange.xforce.ibmcloud.com/vulnerabilities/71871
rhn.redhat.com/errata/RHSA-2012-0841.html