Lucene search
DebianDEBIAN:DLA-76-1:76BAEHistoryOct 24, 2014 - 11:13 a.m.
[SECURITY] [DLA 76-1] kde4libs security update
2014-10-2411:13:35
lists.debian.org
9
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.3%
Package : kde4libs
Version : 4:4.4.5-2+squeeze4
CVE ID : CVE-2014-5033
It was discovered that KAuth, part of kdelibs, uses polkit in a way
that is prone to a race condition that may allow authorization bypass.
Attachment:
signature.asc
Description: This is a digitally signed message part.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 6 | amd64 | kdelibs5-dev | < 4:4.4.5-2+squeeze4 | kdelibs5-dev_4:4.4.5-2+squeeze4_amd64.deb |
| Debian | 7 | i386 | libkimproxy4 | < 4:4.8.4-4+deb7u1 | libkimproxy4_4:4.8.4-4+deb7u1_i386.deb |
| Debian | 6 | i386 | libnepomukquery4a | < 4:4.4.5-2+squeeze4 | libnepomukquery4a_4:4.4.5-2+squeeze4_i386.deb |
| Debian | 7 | kfreebsd-amd64 | libkdecore5 | < 4:4.8.4-4+deb7u1 | libkdecore5_4:4.8.4-4+deb7u1_kfreebsd-amd64.deb |
| Debian | 6 | i386 | libkrossui4 | < 4:4.4.5-2+squeeze4 | libkrossui4_4:4.4.5-2+squeeze4_i386.deb |
| Debian | 7 | armel | kdelibs5-dbg | < 4:4.8.4-4+deb7u1 | kdelibs5-dbg_4:4.8.4-4+deb7u1_armel.deb |
| Debian | 7 | sparc | libthreadweaver4 | < 4:4.8.4-4+deb7u1 | libthreadweaver4_4:4.8.4-4+deb7u1_sparc.deb |
| Debian | 7 | i386 | libkfile4 | < 4:4.8.4-4+deb7u1 | libkfile4_4:4.8.4-4+deb7u1_i386.deb |
| Debian | 7 | s390 | libknewstuff3-4 | < 4:4.8.4-4+deb7u1 | libknewstuff3-4_4:4.8.4-4+deb7u1_s390.deb |
| Debian | 7 | powerpc | libkutils4 | < 4:4.8.4-4+deb7u1 | libkutils4_4:4.8.4-4+deb7u1_powerpc.deb |
Related
fedora
fedora
[SECURITY] Fedora 20 Update: kphotoalbum-4.5-2.fc20
2014-09-27 09:47:52
[SECURITY] Fedora 20 Update: dragon-4.14.1-1.fc20
2014-09-27 09:47:43
[SECURITY] Fedora 20 Update: baloo-4.14.1-1.fc20
2014-09-27 09:47:43
oraclelinux
oraclelinux
polkit-qt security update
2014-10-06 00:00:00
securityvulns
securityvulns
KDE restrictions bypass
2014-08-04 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2014-1359)
2015-10-06 00:00:00
Fedora Update for kross-interpreters FEDORA-2014-11448
2014-10-01 00:00:00
Fedora Update for dragon FEDORA-2014-11448
2014-10-01 00:00:00
centos
centos
polkit security update
2014-10-06 18:04:24
ubuntu
ubuntu
KDE-Libs vulnerability
2014-07-31 00:00:00
debian
debian
[SECURITY] [DSA 3004-1] kde4libs security update
2014-08-10 22:34:33
freebsd
freebsd
kdelibs -- KAuth PID Reuse Flaw
2014-07-30 00:00:00
nessus
nessus
Fedora 20 : akonadi-1.13.0-2.fc20 / amor-4.14.1-1.fc20 / analitza-4.14.1-1.fc20 / ark-4.14.1-1.fc20 / etc (2014-11448)
2014-09-29 00:00:00
Fedora 20 : polkit-qt-0.112.0-1.fc20 (2014-9641)
2014-09-22 00:00:00
Fedora 19 : kdelibs-4.11.5-5.fc19 (2014-11348)
2014-10-11 00:00:00
redhat
redhat
(RHSA-2014:1359) Important: polkit-qt security update
2014-10-06 00:00:00
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.3%
Related for DEBIAN:DLA-76-1:76BAE