Python keyring has insecure permissions on new databases allowing world-readable files to be created
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2012/11/27/4 | Mailing List Third Party Advisory |
https://access.redhat.com/security/cve/cve-2012-5578 | Third Party Advisory |
https://bugs.launchpad.net/ubuntu/+source/python-keyring/+bug/1031465 | Issue Tracking Patch Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5578 | Issue Tracking Third Party Advisory |
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-5578 | Issue Tracking Third Party Advisory |
https://security-tracker.debian.org/tracker/CVE-2012-5578 | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2019-11-25 13:15
Updated : 2024-02-28 17:28
NVD link : CVE-2012-5578
Mitre link : CVE-2012-5578
CVE.ORG link : CVE-2012-5578
JSON object : View
Products Affected
python
- keyring
CWE
CWE-276
Incorrect Default Permissions