LWN.net Logo

Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

gnome-online-accounts: information disclosure
Package(s):gnome-online-accounts CVE #(s):CVE-2013-1799
Created:March 25, 2013 Updated:March 27, 2013
Description: From the Ubuntu advisory:

It was discovered that GNOME Online Accounts did not properly check SSL certificates when configuring online accounts. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to alter or compromise credentials and confidential information.

Alerts:
Ubuntu USN-1779-1 2013-03-25
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds