CVE-2012-3466

Published: Oct 22, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

GNOME gnome-keyring 3.4.0 through 3.4.1, when gpg-cache-method is set to "idle" or "timeout," does not properly limit the amount of time a passphrase is cached, which allows attackers to have an unspecified impact via unknown attack vectors.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20120808 Re: CVE Request: gnome-keyring: improper caching of gpg password/passphrase

mailing-list

x_refsource_MLIST

http://git.gnome.org/browse/gnome-keyring/commit/?id=51606f299e5ee9d48096db0a5957efe26cbf7cc3

x_refsource_CONFIRM

[oss-security] 20120809 CVE Request: gnome-keyring: improper caching of gpg password/passphrase

mailing-list

x_refsource_MLIST

http://git.gnome.org/browse/gnome-keyring/commit/?id=5dff623470b859e332dbe12afb0dc57b292832d2

x_refsource_CONFIRM

https://bugzilla.gnome.org/show_bug.cgi?id=681081

x_refsource_CONFIRM

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683655

x_refsource_MISC

openSUSE-SU-2012:1121

vendor-advisory

x_refsource_SUSE

https://bugzilla.redhat.com/show_bug.cgi?id=845426

x_refsource_MISC

MDVSA-2013:084

vendor-advisory

x_refsource_MANDRIVA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-3466

Description

Affected Products

References