29 matches found
EUVD-2020-5043
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-12755
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the...
OPENSUSE-SU-2024:10497-1 kio-extras5-16.12.0-1.1 on GA media
These are all security issues fixed in the kio-extras5-16.12.0-1.1 package on the GA media of openSUSE Tumbleweed...
SUSE CVE-2014-8600
Multiple cross-site scripting XSS vulnerabilities in KDE-Runtime 4.14.3 and earlier, kwebkitpart 1.3.4 and earlier, and kio-extras 5.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via a crafted URI using the 1 zip, 2 trash, 3 tar, 4 thumbnail, 5 smtps, 6 smtp, 7 smb...
CVE-2020-12755
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of a password...
Mageia: Security Advisory (MGASA-2018-0477)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated kio-extras packages fix security vulnerability
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of the password CVE-2020-12755...
MGASA-2020-0371 Updated kio-extras packages fix security vulnerability
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of the password CVE-2020-12755...
Security fix for the ALT Linux 9 package kde5-kio-extras version 19.12.3-alt2
19.12.3-alt2 built Feb. 12, 2021 Sergey V Turchin in task 265603 --- 19.12.3-alt2 built May 13, 2020 Sergey V Turchin in task 251571 May 12, 2020 Sergey V Turchin - don't store unasked fish:/ passwords Fixes: CVE-2020-12755...
DEBIAN-CVE-2020-12755
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of a password...
CVE-2020-12755
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of a password...
Session fixation
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of a password...
CVE-2020-12755
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of a password...
CVE-2020-12755
CVE-2020-12755 affects KDE kio-extras (fishProtocol::establishConnection in fish/fish.cpp) through version 20.04.0. The vulnerability may cause a cacheAuthentication call even when keepPassword is not set, potentially leading to unintended storage of passwords in KWallet. Connected documents cons...
CVE-2020-12755
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of a password...
Fedora Update for kio-extras FEDORA-2018-2e64407bef
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 28 : kio-extras (2018-27399fd25e)
Drop -htmlthumbnailer, it has security implications and didn't work all that well. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible withou...
Fedora 29 : kio-extras (2018-2e64407bef)
Drop -htmlthumbnailer, it has security implications and didn't work all that well. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible withou...
Updated kio-extras packages fix security vulnerability
The HTML thumbnailer was incorrectly accessing some content of remote URLs listed in HTML files. This meant that the owners of the servers referred in HTML files in your system could have seen in their access logs your IP address every time the thumbnailer tried to create the thumbnail...
Fedora Update for kio-extras FEDORA-2018-27399fd25e
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...