CVE-2013-1853

NameCVE-2013-1853
DescriptionAlmanah Diary 0.9.0 and 0.10.0 does not encrypt the database when closed, which allows local users to obtain sensitive information by reading the database.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
Debian Bugs702905

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
almanah (PTS)stretch0.11.1-1fixed
buster0.11.1-2fixed
bullseye0.12.3-1fixed
bookworm, sid0.12.3-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
almanahsourcesqueeze(not affected)
almanahsource(unstable)0.9.1-1702905

Notes

[squeeze] - almanah <not-affected> (Only affect Almanah used in combination with glib 2.32)
https://bugzilla.gnome.org/show_bug.cgi?id=695117

Search for package or bug name: Reporting problems