diff -up wicd-1.7.0/wicd/configmanager.py.CVE-2012-0813 wicd-1.7.0/wicd/configmanager.py --- wicd-1.7.0/wicd/configmanager.py.CVE-2012-0813 2012-01-27 14:34:12.779219466 -0500 +++ wicd-1.7.0/wicd/configmanager.py 2012-01-27 14:34:33.534091679 -0500 @@ -97,8 +97,13 @@ class ConfigManager(RawConfigParser): ret = ret[3:-3] if default: if self.debug: - print ''.join(['found ', option, ' in configuration ', - str(ret)]) + # mask out sensitive information + if option in ['apsk', 'password', 'identity', 'private_key', \ + 'private_key_passwd', 'key', 'passphrase']: + print ''.join(['found ', option, ' in configuration *****']) + else: + print ''.join(['found ', option, ' in configuration ', + str(ret)]) else: if default != "__None__": print 'did not find %s in configuration, setting default %s' % (option, str(default))