Package: keepass2 Version: 2.34+dfsg-1 Severity: important Dear Maintainer,
I've found out that when I run keepass2, mono is opening a local TCP port: tcp 0 0 127.0.0.1:45231 0.0.0.0:* LISTEN 23314/cli tcp 0 0 127.0.0.1:57826 127.0.0.1:45231 ESTABLISHED 23314/cli tcp 0 0 127.0.0.1:45231 127.0.0.1:57826 ESTABLISHED 23314/cli Immediately I run wireshark to intercept the traffic. The channel is quiet, but when I type a letter in keepass, a packet containing 0xFF as data is sent. I'm attaching a pcap file of the session. Closing the keepass leads to RST & closing the listening port. last time I checked (some time ago) keepass wasn't listening to anything, what has changed? Auto-updates are stopped, I have no plugins with keepass, so it is supposed to be a completely offline solution, except that now we have a strange port listening while using the keepass. -- System Information: Debian Release: stretch/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.7.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages keepass2 depends on: ii libmono-corlib4.5-cil 4.2.1.102+dfsg2-8 ii libmono-system-drawing4.0-cil 4.2.1.102+dfsg2-8 ii libmono-system-security4.0-cil 4.2.1.102+dfsg2-8 ii libmono-system-windows-forms4.0-cil 4.2.1.102+dfsg2-8 ii libmono-system-xml4.0-cil 4.2.1.102+dfsg2-8 ii libmono-system4.0-cil 4.2.1.102+dfsg2-8 ii libx11-6 2:1.6.3-1 ii mono-runtime 4.2.1.102+dfsg2-8 Versions of packages keepass2 recommends: ii xsel 1.2.0-2 Versions of packages keepass2 suggests: pn keepass2-doc <none> pn mono-dmcs <none> pn xdotool <none> -- no debconf information
keepass2-34.pcapng
Description: Binary data
