Lucene search
RedHatRHSA-2003:003HistoryFeb 17, 2003 - 12:00 a.m.
(RHSA-2003:003) kdelibs security update
2003-02-1700:00:00
access.redhat.com
13
0.094 Low
EPSS
Percentile
94.7%
KDE is a graphical desktop environment for the X Window System.
KDE fails in multiple places to properly quote URLs and filenames
before passing them to a command shell. This could allow remote
attackers to execute arbitrary commands through carefully crafted URLs,
filenames, or email addresses.
Users of KDE are advised to install the updated packages which contain
backported patches to correct this issue.
Please note that for the Itanium (IA64) architecture only, this update also
fixes several other vulnerabilities. Details concerning these
vulnerabilities can be found in advisory RHSA-2002:221 and correspond to
CVE names CAN-2002-0970, CAN-2002-1151, CAN-2002-1247, and CAN-2002-1306.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | ia64 | kdelibs-devel | < 2.2.2-6 | kdelibs-devel-2.2.2-6.ia64.rpm |
| RedHat | any | i386 | kdegraphics | < 2.2.2-3 | kdegraphics-2.2.2-3.i386.rpm |
| RedHat | any | i386 | kdebase-devel | < 2.2.2-6 | kdebase-devel-2.2.2-6.i386.rpm |
| RedHat | any | i386 | kdelibs-sound | < 2.2.2-6 | kdelibs-sound-2.2.2-6.i386.rpm |
| RedHat | any | ia64 | arts | < 2.2.2-6 | arts-2.2.2-6.ia64.rpm |
| RedHat | any | i386 | kdelibs-sound-devel | < 2.2.2-6 | kdelibs-sound-devel-2.2.2-6.i386.rpm |
| RedHat | any | i386 | arts | < 2.2.2-6 | arts-2.2.2-6.i386.rpm |
| RedHat | any | i386 | kdelibs-devel | < 2.2.2-6 | kdelibs-devel-2.2.2-6.i386.rpm |
| RedHat | any | ia64 | kdelibs | < 2.2.2-6 | kdelibs-2.2.2-6.ia64.rpm |
| RedHat | any | i386 | kdegames | < 2.2.2-2 | kdegames-2.2.2-2.i386.rpm |
Related
nessus
nessus
RHEL 2.1 : kdelibs (RHSA-2003:003)
2004-07-06 00:00:00
RHEL 2.1 : kdelibs (RHSA-2002:221)
2004-07-06 00:00:00
Mandrake Linux Security Advisory : kdenetwork (MDKSA-2002:080)
2004-07-31 00:00:00
cvelist
cvelist
cve
cve
openvas
openvas
Debian Security Advisory DSA 155-1 (kdelibs)
2008-01-17 00:00:00
Debian Security Advisory DSA 243-1 (kdemultimedia)
2008-01-17 00:00:00
Debian Security Advisory DSA 238-1 (kdepim)
2008-01-17 00:00:00
nvd
nvd
osv
osv
kdelibs - privacy escalation with Konqueror
2002-08-17 00:00:00
kdepim - several vulnerabilities
2003-01-23 00:00:00
kdenetwork - buffer overflow
2002-11-11 00:00:00
suse
suse
remote command execution in kdenetwork
2002-11-12 10:26:08
debian
debian
[SECURITY] [DSA 238-1] New kdepim packages fix several vulnerabilities
2003-01-23 14:12:26
[SECURITY] [DSA 214-1] New kdentwork packages fix buffer overflows
2002-12-20 16:02:12
[SECURITY] [DSA 193-1] New klisa packages fix buffer overflow
2002-11-11 17:07:40
debiancve
debiancve
CVE-2002-1393
2003-01-17 05:00:00
CVE-2009-0653
2022-10-03 16:24:10
securityvulns
securityvulns
iDEFENSE Security Advisory 11.11.02: Buffer Overflow in KDE resLISa
2002-11-12 00:00:00
ubuntucve
ubuntucve
CVE-2009-0653
2009-02-20 00:00:00
prion
prion
Sql injection
2009-02-20 19:30:00
redhatcve
redhatcve
CVE-2009-0653
2015-10-30 10:27:20