PYSEC-2019-182
See a problem?- Import Source
- https://github.com/pypa/advisory-database/blob/main/vulns/keyring/PYSEC-2019-182.yaml
- JSON Data
- https://api.test.osv.dev/v1/vulns/PYSEC-2019-182
- Aliases
- Published
- 2019-11-25T13:15:00Z
- Modified
- 2023-11-01T04:44:53.141973Z
- Summary
- [none]
- Details
-
Python keyring has insecure permissions on new databases allowing world-readable files to be created
- References
-
- https://bugs.launchpad.net/ubuntu/+source/python-keyring/+bug/1031465
- https://access.redhat.com/security/cve/cve-2012-5578
- https://security-tracker.debian.org/tracker/CVE-2012-5578
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-5578
- http://www.openwall.com/lists/oss-security/2012/11/27/4
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5578
- https://github.com/advisories/GHSA-8867-vpm3-g98g
Affected packages
PyPI / keyring
Package
- Name
- keyring
- View open source insights on deps.dev
- Purl
- pkg:pypi/keyring
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.10.1