CVE-2017-18021

Опубликовано: 05 янв. 2018

Источник: debian

Описание

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
qtpass	fixed	1.2.1-1		package
qtpass	fixed	1.1.6-1+deb9u1	stretch	package

Примечания

https://lists.zx2c4.com/pipermail/password-store/2018-January/003165.html
https://github.com/IJHack/QtPass/issues/338

Связанные уязвимости

CVE-2017-18021

CVSS3: 9.8

ubuntu

около 8 лет назад

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI.

CVE-2017-18021

CVSS3: 9.8

nvd

около 8 лет назад

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI.

GHSA-vxr9-mr85-jwjw

CVSS3: 9.8

github

больше 3 лет назад

It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI.