Parent Directory
| 
Revision Log
MGASA-2020-0371: kio-extras-19.04.0-1.1.mga7
| 1 | auroud85 | 10811 | type: security |
| 2 | subject: Updated kio-extras packages fix security vulnerability | ||
| 3 | CVE: | ||
| 4 | - CVE-2020-12755 | ||
| 5 | src: | ||
| 6 | 7: | ||
| 7 | core: | ||
| 8 | - kio-extras-19.04.0-1.1.mga7 | ||
| 9 | description: | | ||
| 10 | fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through | ||
| 11 | 20.04.0 makes a cacheAuthentication call even if the user had not set the | ||
| 12 | keepPassword option. This may lead to unintended KWallet storage of the | ||
| 13 | password (CVE-2020-12755). | ||
| 14 | references: | ||
| 15 | - https://bugs.mageia.org/show_bug.cgi?id=27297 | ||
| 16 | - https://kde.org/info/security/advisory-20200510-1.txt | ||
| 17 | neoclust | 10812 | ID: MGASA-2020-0371 |
| ViewVC Help | |
| Powered by ViewVC 1.1.30 |