High severityNVD Advisory· Published Oct 28, 2019· Updated Aug 6, 2024
CVE-2012-5577
CVE-2012-5577
Description
Python keyring lib before 0.10 created keyring files with world-readable permissions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
keyringPyPI | < 0.10 | 0.10 |
Affected products
2- Python keyring lib/Python keyring libv5Range: 0.10
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-p86x-652p-6385ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2012-5577ghsaADVISORY
- www.openwall.com/lists/oss-security/2012/11/27/3ghsax_refsource_MISCWEB
- bitbucket.org/kang/python-keyring-lib/commits/049cd181470f1ee6c540e1d64acf1def7b1de0c1ghsax_refsource_CONFIRMWEB
- bugzilla.redhat.com/show_bug.cgighsax_refsource_MISCWEB
- github.com/pypa/advisory-database/tree/main/vulns/keyring/PYSEC-2019-181.yamlghsaWEB
- security-tracker.debian.org/tracker/CVE-2012-5577ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.