*** This bug is a security vulnerability ***
Public security bug reported:
Binary package hint: gnome-keyring
While bug 539180 was fixed, the old gnome-keyring that was running for
anyone with lucid devel will have still left a
~/.gnome2/keyrings/session.keyring (which is still loaded). A fixed
gnome-keyring needs to delete the session.keyring from the disk as well
as never save it.
** Affects: gnome-keyring (Ubuntu)
Importance: High
Assignee: Canonical Desktop Team (canonical-desktop-team)
Status: New
** Affects: gnome-keyring (Ubuntu Lucid)
Importance: High
Assignee: Canonical Desktop Team (canonical-desktop-team)
Status: New
** Also affects: gnome-keyring (Ubuntu Lucid)
Importance: Undecided
Status: New
** Changed in: gnome-keyring (Ubuntu Lucid)
Milestone: None => ubuntu-10.04-beta-2
** Changed in: gnome-keyring (Ubuntu Lucid)
Importance: Undecided => High
** Changed in: gnome-keyring (Ubuntu Lucid)
Assignee: (unassigned) => Canonical Desktop Team (canonical-desktop-team)
** This bug has been flagged as a security vulnerability
--
old session keyring still on disk
https://bugs.launchpad.net/bugs/546446
You received this bug notification because you are a member of Ubuntu
Desktop Bugs, which is subscribed to gnome-keyring in ubuntu.
--
desktop-bugs mailing list
desktop-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/desktop-bugs
