vulnerability
FreeBSD: VID-5A9B3D70-48E2-4267-B196-83064CB14FE0: shotwell -- failure to encrypt authentication
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:C/I:C/A:N) | Jan 31, 2017 | Feb 2, 2017 | Feb 19, 2025 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:N)
Published
Jan 31, 2017
Added
Feb 2, 2017
Modified
Feb 19, 2025
Description
Jens Georg reports:
I have just released Shotwell 0.24.5 and 0.25.4 which turn
on HTTPS encryption all over the publishing plugins.
Users using Tumblr and Yandex.Fotki publishing are strongly
advised to change their passwords and reauthenticate Shotwell
to those services after upgrade.
Users of Picasa and Youtube publishing are strongly advised
to reauthenticate (Log out and back in) Shotwell to those
services after upgrade.
Solution
freebsd-upgrade-package-shotwell
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.