12 matches found
Linux Distros Unpatched Vulnerability : CVE-2013-7252
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kwalletd in KWallet before KDE Applications 14.12.0 uses Blowfish with ECB mode instead of CBC mode when encrypting the password store, which makes it easier fo...
RHEL 6 : kdebase-runtime (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - kwallet: crypto misuse CVE-2013-7252 Note that Nessus has not tested for this issue but has instead relied on the...
Mageia: Security Advisory (MGASA-2015-0044)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:0512-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 11.3 Security Update : kdebase4-runtime (SAT Patch Number 10404)
kdebase4-runtime has been updated to fix one security issue : - Added gpg based encryption support to kwallet. bnc857200. CVE-2013-7252 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The...
SUSE-SU-2015:0512-1 Security update for kdebase4-runtime
kdebase4-runtime has been updated to fix one security issue: CVE-2013-7252: Added gpg based encryption support to kwallet bnc857200. Security Issues: CVE-2013-7252...
Updated kdebase4-runtime packages fix CVE-2013-7252 and several bugs
Updated kdebase4-runtime packages fix security vulnerability: kwalletd in KWallet before KDE Applications 14.12.0 uses Blowfish with ECB mode instead of CBC mode when encrypting the password store, which makes it easier for attackers to guess passwords via a codebook attack CVE-2013-7252. This...
Fedora Update for kde-runtime FEDORA-2015-0564
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : kde-runtime-4.14.3-3.fc20 (2015-0564)
Pull in upstream fixes for: CVE-2013-7252 kwallet: crypto misuse, and kiosftp corruption Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
CVE-2013-7252
KWallet's kwalletd (KWallet before KDE Applications 14.12.0) uses Blowfish with ECB mode to encrypt the password store instead of CBC, enabling codebook-style attacks to guess passwords when the password store is accessible. This vulnerability is documented across multiple advisories (GLSA-201606...
Fedora 21 : kde-runtime-4.14.3-3.fc21 (2015-0569)
Pull in upstream fixes for: CVE-2013-7252 kwallet: crypto misuse, and kiosftp corruption Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
Fedora Update for kde-runtime FEDORA-2015-0569
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...