ALT-PU-2020-2634-1
Package kde5-kio-extras updated to version 20.04.3-alt1 for branch sisyphus in task 256430.
Closed vulnerabilities
Published: 2020-05-09
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2020-12755
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a cacheAuthentication call even if the user had not set the keepPassword option. This may lead to unintended KWallet storage of a password.
Severity: LOW (3.3)
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References: