Python Keyring Exploits Fixed in Ubuntu 12.10

view story

http://news.softpedia.com – On November 20, Canonical published details about Python Keyring vulnerabilities for its Ubuntu 12.10, Ubuntu 12.04 LTS, and Ubuntu 11.10 operating systems. According to Canonical, several security issues were fixed in Python Keyring. It was discovered that Python Keyring's CryptedFileKeyring file format used weak cryptography and that it created keyring files with insecure permissions. A local attacker could have used these issues to brute-force CryptedFileKeyring ke... (read more) (General)