[prev in list] [next in list] [prev in thread] [next in thread]
List: kde-devel
Subject: Re: [kde-announce] KDE Project Security Advisory: kwallet: Fix CBC encryption handling
From: Albert Astals Cid <aacid () kde ! org>
Date: 2015-01-10 22:40:06
Message-ID: 7326623.5zI7I3ttKr () xps
[Download RAW message or body]
El Dissabte, 10 de gener de 2015, a les 23:30:58, Luc Menut va escriure:
> Hello,
>
> Le 10/01/2015 17:27, Albert Astals Cid a écrit :
> > KDE Project Security Advisory
> > =============================
> >
> > Title: Fix kwalletd CBC encryption handling
> > Risk Rating: Low
> > CVE: CVE-2013-7252
> > Platforms: All
> > Versions: kwalletd < Applications 14.12.1, KF5::KWallet < 5.6.0
> > Author: Valentin Rusu <kde@rusu.info>
> > Date: 9 January 2015
>
> ...
>
> > Solution
> > ========
> >
> > For kde-runtime KWallet upgrade to KDE Applications 14.12.1 or apply the
> >
> > following patch:
> > http://quickgit.kde.org/?p=kde-runtime.git&a=commit&h=14a8232d0b5b1bc5e
> > 0ad922292c6b5a1c501165c
> I see this patch in master and KDE/4.12, but not in KDE/4.13, KDE/4.14
> and Applications/14.12.
> Is it not needed for these 3 branches (KDE/4.13, KDE/4.14 and
> Applications/14.12), fixed in another way ???
No, it's just that Valentin put it in 4.12 when i told him to put it in
Applications/14.12 and i did not check he put it in the correct branch once he
said he had.
I've put it on 14.12 now.
Thanks for checking :)
Cheers,
Albert
>
> regards,
> Luc
>
> >> Visit http://mail.kde.org/mailman/listinfo/kde-devel#unsub to unsubscribe
> >> <<
>> Visit http://mail.kde.org/mailman/listinfo/kde-devel#unsub to unsubscribe <<
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic