11/23/2023 0 Comments Pwgen manWe are also monitoring the request to reject/dispute this CVE on the grounds it is not actually a vulnerability in our software. In addition, having lost control of your computer in this manner would mean the attacker could execute any number of security compromises against your KeePassXC database, regardless of requiring credentials prior to export or credential change.Īt this time, we are not planning any drastic changes to the program to address this submission. Where this is true, there are numerous barriers to actually executing this attack sequence. The root of the argument submitted by the CVE author is that an attacker with unfettered access to an already unlocked database could export or change the password without requiring the original credentials. Additional information can be found in the discussion on GitHub. As the developers of KeePassXC, we do not consider the issue a vulnerability and have filed a request for the CVE to be rejected. The latter is a continuation of the formerīy a different author, with some serious bugs fixed.On Jan alleged KeePassXC vulnerability with the identifier CVE-2023–35866 was posted against KeePassXC versions up to 2.7.5. Categories P-S.Īdd NO_STAGE all over the place in preparation for the staging support (cat: Where not included as they contain Latin-1 characters that break Minor COMMENT typos and surrounding whitespace fixes. Remove indefinite articles and trailing periods from COMMENT, plus Fix trailing whitespace in pkg-descrs, categories * * Alex Deiter (Only the first 15 lines of the commit message are shown above )Īpproved by: maintainer (timeout, 16 days) (Only the first 15 lines of the commit message are shown above )Ī big Thank You to the original contributors of these ports: There have been several proposals to make a project URL available asĪ macro in the ports' Makefiles, over time. Port specific URL to further information. The port INDEX, but for many ports only the last line did contain the Present in a pkg-descr file, only the first one was tarnsfered into URLs should point at a project website or other relevant resources.Īccess to these URLs required processing of the pkg-descr files, and Ports' pkg-descr files, one per line and prefixed with "WWW:". It has been common practice to have one or more URLs at the end of the This commit removes the WWW: lines of moved-over URLs from these Remove WWW entries moved into port MakefilesĬommit b7f05445c00f has added WWW entries to port Makefiles based on Number of commits found: 33 Commit History - (may be incomplete: for full details, see links to repositories near top of page) The man page suggests 64 bits when attackers do not have direct access to. Master Sites: Expand this list (56 items) Collapse this list. PWGen is one of the oldest password generators for Linux 1. This port is required by: for RunĬonfiguration Options: No options to configure Options name: sysutils_pwgen USES: cpe FreshPorts was unable to extract/find any pkg message Packages (timestamps in pop-ups are UTC): PKGNAME: pwgen Flavors: there is no flavor information for this port. NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above. To install the port: cd /usr/ports/sysutils/pwgen/ & make install clean To add the package, run one of these commands:
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |