Fluid Attacks Database

Description

GNOME gnome-keyring 3.4.0 through 3.4.1, when gpg-cache-method is set to "idle" or "timeout," does not properly limit the amount of time a passphrase is cached, which allows attackers to have an unspecified impact via unknown attack vectors.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	gnome-keyring	>=0 <3.4.1-5	3.4.1-5
debian 11	gnome-keyring	>=0 <3.4.1-5	3.4.1-5
debian 13	gnome-keyring	>=0 <3.4.1-5	3.4.1-5
debian 14	gnome-keyring	>=0 <3.4.1-5	3.4.1-5

Aliases

1. CVE-2012-34662. NVD-2012-34663. OSV-DEBIAN-2012-34664. OSV-2012-34665. SECURITY-TRACKER-CVE-2012-3466

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.