EUVD-2017-9161

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2017-18021

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only appli...

Mageia: Security Advisory (MGASA-2018-0274)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated qtpass packages fix security vulnerability

All passwords generated with QtPass' built-in password generator prior to 1.2.1 are possibly predictable and enumerable by hackers...

MGASA-2018-0274 Updated qtpass packages fix security vulnerability

All passwords generated with QtPass' built-in password generator prior to 1.2.1 are possibly predictable and enumerable by hackers...

Fedora Update for qtpass FEDORA-2018-5aa21dc9a3

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for qtpass FEDORA-2018-57c3a424eb

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 26 : qtpass (2018-5aa21dc9a3)

Qtpass password generation had a bug where only a 1000 different passwords where possible https://github.com/IJHack/QtPass/issues/338 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

Fedora 27 : qtpass (2018-57c3a424eb)

Qtpass password generation had a bug where only a 1000 different passwords where possible https://github.com/IJHack/QtPass/issues/338 ---- Upstream release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

[SECURITY] Fedora 27 Update: qtpass-1.2.1-1.fc27

QtPass is a cross-platform GUI for pass, the standard Unix password manager...

[SECURITY] Fedora 26 Update: qtpass-1.2.1-1.fc26

QtPass is a cross-platform GUI for pass, the standard Unix password manager...

[ASA-201801-11] qtpass: private key recovery

Arch Linux Security Advisory ASA-201801-11 ========================================== Severity: High Date : 2018-01-11 CVE-ID : CVE-2017-18021 Package : qtpass Type : private key recovery Remote : Yes Link : https://security.archlinux.org/AVG-576 Summary ======= The package qtpass before version...

QtPass Password Generation Vulnerability

QtPass is a Unix password manager with a graphical user interface maintained by the Dutch organization IJhack. A security vulnerability exists in versions of QtPass prior to 1.2.1. An attacker can exploit the vulnerability to predict and enumerate passwords...

CVE-2017-18021

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI...

DEBIAN-CVE-2017-18021

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI...

UBUNTU-CVE-2017-18021

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI...

Default credentials

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI...

CVE-2017-18021

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI...

CVE-2017-18021

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI...

CVE-2017-18021

QtPass before 1.2.1 (QtPass GUI) uses a non-cryptographically secure RNG seeded with srand(msecs) based on the last-second, yielding possibly predictable/enumerable passwords and exposing them to attackers. Impact: passwords generated by the built-in generator may be recovered or enumerated. Reme...