Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

1 – 4 of 4 results

CVE-2012-6111

Low priority
Ignored

gnome-keyring does not discard stored secrets when using gnome_keyring_lock_all_sync function

1 affected packages

gnome-keyring

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gnome-keyring Not affected Not affected
Show less packages

CVE-2018-20781

Medium priority
Fixed

In pam/gkr-pam-module.c in GNOME Keyring before 3.27.2, the user's password is kept in a session-child process spawned from the LightDM daemon. This can expose the credential in cleartext.

1 affected packages

gnome-keyring

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gnome-keyring Not affected Fixed
Show less packages

CVE-2018-19358

Low priority
Ignored

** DISPUTED ** GNOME Keyring through 3.28.2 allows local users to retrieve login credentials via a Secret Service API call and the D-Bus interface if the keyring is unlocked, a similar issue to CVE-2008-7320. One perspective is...

1 affected packages

gnome-keyring

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gnome-keyring Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2012-3466

Medium priority
Ignored

GNOME gnome-keyring 3.4.0 through 3.4.1, when gpg-cache-method is set to "idle" or "timeout," does not properly limit the amount of time a passphrase is cached, which allows attackers to have an unspecified impact via unknown...

1 affected packages

gnome-keyring

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gnome-keyring
Show less packages