VulnerableCode Package Details - pkg:pypi/keyring@0.10

Search for packages

Vulnerability	Summary	Fixed by
VCID-m1q9-dkze-rqh4 Aliases: CVE-2012-5578 GHSA-8867-vpm3-g98g PYSEC-2019-182	Python keyring has insecure permissions on new databases allowing world-readable files to be created	0.10.1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-m1q9-dkze-rqh4
Aliases:
CVE-2012-5578
GHSA-8867-vpm3-g98g
PYSEC-2019-182

Python keyring has insecure permissions on new databases allowing world-readable files to be created

0.10.1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-m1q9-dkze-rqh4	Python keyring has insecure permissions on new databases allowing world-readable files to be created	CVE-2012-5578 GHSA-8867-vpm3-g98g PYSEC-2019-182
VCID-r4cz-6k4m-73ee	Python keyring lib before 0.10 created keyring files with world-readable permissions.	CVE-2012-5577 GHSA-p86x-652p-6385 PYSEC-2019-181

Vulnerability

Summary

Aliases

VCID-m1q9-dkze-rqh4

Python keyring has insecure permissions on new databases allowing world-readable files to be created

CVE-2012-5578
GHSA-8867-vpm3-g98g
PYSEC-2019-182

VCID-r4cz-6k4m-73ee

Python keyring lib before 0.10 created keyring files with world-readable permissions.

CVE-2012-5577
GHSA-p86x-652p-6385
PYSEC-2019-181

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-12T17:18:34.999945+00:00	GitLab Importer	Fixing	VCID-r4cz-6k4m-73ee	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/keyring/CVE-2012-5577.yml	38.6.0
2026-06-12T17:18:33.748692+00:00	GitLab Importer	Fixing	VCID-m1q9-dkze-rqh4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/keyring/CVE-2012-5578.yml	38.6.0
2026-06-12T08:01:59.577890+00:00	GithubOSV Importer	Fixing	VCID-m1q9-dkze-rqh4	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/03/GHSA-8867-vpm3-g98g/GHSA-8867-vpm3-g98g.json	38.6.0
2026-06-12T08:01:57.924555+00:00	GithubOSV Importer	Fixing	VCID-r4cz-6k4m-73ee	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/03/GHSA-p86x-652p-6385/GHSA-p86x-652p-6385.json	38.6.0
2026-06-12T04:03:01.106844+00:00	Pypa Importer	Affected by	VCID-m1q9-dkze-rqh4	https://github.com/pypa/advisory-database/blob/main/vulns/keyring/PYSEC-2019-182.yaml	38.6.0
2026-06-12T04:02:59.072052+00:00	Pypa Importer	Fixing	VCID-r4cz-6k4m-73ee	https://github.com/pypa/advisory-database/blob/main/vulns/keyring/PYSEC-2019-181.yaml	38.6.0
2026-06-11T20:44:50.298083+00:00	PyPI Importer	Affected by	VCID-m1q9-dkze-rqh4	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-11T20:44:47.904781+00:00	PyPI Importer	Fixing	VCID-r4cz-6k4m-73ee	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-11T20:25:57.855030+00:00	GHSA Importer	Fixing	VCID-r4cz-6k4m-73ee	https://github.com/advisories/GHSA-p86x-652p-6385	38.6.0
2026-06-11T20:25:57.770306+00:00	GHSA Importer	Fixing	VCID-m1q9-dkze-rqh4	https://github.com/advisories/GHSA-8867-vpm3-g98g	38.6.0