openSUSE-SU-2018:0642-1

Опубликовано: 09 мар. 2018

Источник: suse-cvrf

Описание

Security update for shotwell

This update for shotwell fixes the following issues:

Security issue fixed:

CVE-2017-1000024: Use HTTPS encryption all over the publishing plugins (bsc#1054311).

This update was imported from the SUSE:SLE-12-SP2:Update update project.

Список пакетов

openSUSE Leap 42.3

shotwell-0.22.0+git.20160103-16.1

shotwell-lang-0.22.0+git.20160103-16.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2018-03/msg00025.html
E-Mail link for openSUSE-SU-2018:0642-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to an information disclosure in the web publishing plugins resulting in potential password and oauth token plaintext transmission

Затронутые продукты

openSUSE Leap 42.3:shotwell-0.22.0+git.20160103-16.1

openSUSE Leap 42.3:shotwell-lang-0.22.0+git.20160103-16.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-1000024.html
CVE-2017-1000024
https://bugzilla.suse.com/1054311
SUSE Bug 1054311

openSUSE-SU-2018:0642-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2017-1000024

Описание

Затронутые продукты

Ссылки