Lucene search
Gentoo FoundationMGASA-2014-0101HistoryFeb 26, 2014 - 1:59 a.m.
Updated oath-toolkit packages fix security vulnerability
2014-02-2601:59:23
Gentoo Foundation
advisories.mageia.org
15
0.002 Low
EPSS
Percentile
51.4%
It was found that comments (lines starting with a hash) in /etc/users.oath could prevent one-time-passwords (OTP) from being invalidated, leaving the OTP vulnerable to replay attacks (CVE-2013-7322).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 3 | noarch | oath-toolkit | < 1.12.6-2.1 | oath-toolkit-1.12.6-2.1.mga3 |
| Mageia | 4 | noarch | oath-toolkit | < 2.4.1-1 | oath-toolkit-2.4.1-1.mga4 |
Related
prion
prion
Deserialization of untrusted data
2014-03-09 13:16:00
securityvulns
securityvulns
[ MDVSA-2014:061 ] oath-toolkit
2014-03-18 00:00:00
oath-toolkit replay attack
2014-03-18 00:00:00
ubuntucve
ubuntucve
CVE-2013-7322
2014-03-09 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0101)
2022-01-28 00:00:00
Fedora Update for oath-toolkit FEDORA-2014-2875
2014-04-16 00:00:00
Fedora Update for oath-toolkit FEDORA-2014-2875
2014-04-16 00:00:00
nessus
nessus
Fedora 20 : oath-toolkit-2.4.1-3.fc20 (2014-2875)
2014-04-16 00:00:00
Fedora 19 : oath-toolkit-2.4.1-1.fc19 (2014-2534)
2014-02-24 00:00:00
Mandriva Linux Security Advisory : oath-toolkit (MDVSA-2014:061)
2014-03-17 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: oath-toolkit-2.4.1-3.fc20
2014-04-15 15:58:30
[SECURITY] Fedora 19 Update: oath-toolkit-2.4.1-1.fc19
2014-02-22 18:12:34
debiancve
debiancve
CVE-2013-7322
2014-03-09 13:16:00
cve
cve
CVE-2013-7322
2014-03-09 13:16:00