GLSA-201206-08 : Wicd: Multiple vulnerabilities
Medium Nessus Plugin ID 59646
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-201206-08 (Wicd: Multiple vulnerabilities)
Two vulnerabilities have been found in Wicd:
Passwords and passphrases are written to /var/log/wicd (CVE-2012-0813).
Input from the daemon's D-Bus interface is not properly sanitized (CVE-2012-2095).
A local attacker could gain privileges of the root user or obtain sensitive information.
There is no known workaround at this time.
SolutionAll Wicd users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=net-misc/wicd-18.104.22.168'