CVE-2012-6655

NameCVE-2012-6655
Descriptionpasses (encrypted) passwords as commandline arguments
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
Debian Bugs757912

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
accountsservice (PTS)wheezy0.6.21-8vulnerable
jessie0.6.37-3vulnerable
stretch0.6.43-1vulnerable
buster, sid0.6.45-1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
accountsservicesource(unstable)(unfixed)low757912

Notes

[stretch] - accountsservice <ignored> (Minor issue)
[jessie] - accountsservice <ignored> (Minor issue)
[wheezy] - accountsservice <ignored> (Minor issue)
https://bugs.freedesktop.org/show_bug.cgi?id=55000

Search for package or bug name: Reporting problems