VDB
GCVE-110-MAGEIA-2015-44
GCVE-110-MAGEIA-2015-44
Advisory Published
Updated kdebase4-runtime packages fix security vulnerability:
kwalletd in KWallet before KDE Applications 14.12.0 uses Blowfish with ECB
mode instead of CBC mode when encrypting the password store, which makes it
easier for attackers to guess passwords via a codebook attack (CVE-2013-7252).
This update also fixes some additional issues:
- encoding in KDEsuDialog (mga#14851)
- kio_sftp can corrupts files when reading (bko#342391)
- use euro currency for Lithuania
- save the default file manager, email client and browser in mimeapps.list
[Default Applications] for a better interoperability with most of GTK
applications (mga#4461)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | kdebase4-runtime | 0 (affected), 4.12.5-1.3.mga4 (unaffected), 0 (affected), 4.12.5-1.3.mga4 (unaffected) | — |
| Mageia | tkimg | 0 (affected), 1.4-2.1.mga4 (unaffected) | — |
Aliases
References
Browse GCVE Records
72,337 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.