Advisories » MGASA-2019-0111

Updated gnome-keyring packages fix security vulnerability

Publication date: 14 Mar 2019
Modification date: 14 Mar 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-20781

Description

It was discovered that GNOME Keyring incorrectly cleared out credentials
supplied to the PAM module. A local attacker could possibly use this
issue to discover login credentials (CVE-2018-20781).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=24480
• https://usn.ubuntu.com/3894-1/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20781

SRPMS

6/core

• gnome-keyring-3.20.0-1.1.mga6