Skip to content
GitLab
Explore
Sign in
Register
Commits on Source (2)
CVE-2018-19358,gnome-keyring: no-dsa for Jessie
· 0011af4b
Markus Koschany
authored
Nov 22, 2018
0011af4b
Merge branch 'master' of salsa.debian.org:security-tracker-team/security-tracker
· 54026d69
Markus Koschany
authored
Nov 22, 2018
54026d69
Show whitespace changes
Inline
Side-by-side
data/CVE/list
View file @
54026d69
...
...
@@ -244,8 +244,13 @@ CVE-2018-19359 [Unauthorized service template creation]
NOTE: https://about.gitlab.com/2018/11/19/critical-security-release-gitlab-11-dot-4-dot-6-released/
CVE-2018-19358 (GNOME Keyring through 3.28.2 allows local users to retrieve login ...)
- gnome-keyring <unfixed> (bug #914154)
[jessie] - gnome-keyring <no-dsa> (The current design works as expected)
NOTE: https://bugs.launchpad.net/ubuntu/+source/gnome-keyring/+bug/1780365
NOTE: https://github.com/sungjungk/keyring_crack
NOTE: The default keyring is automatically unlocked upon successful login.
NOTE: The current behavior to access passwords via DBus is expected but
NOTE: cannot be compromised by another user on the system. Users can choose
NOTE: to use a separate keyring if they prefer to be prompted.
CVE-2018-19357
RESERVED
CVE-2018-19356
