7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.173 Low
EPSS
Percentile
95.6%
kdelibs contains libraries for the K Desktop Environment (KDE).
A heap overflow flaw was discovered affecting kjs, the JavaScript
interpreter engine used by Konqueror and other parts of KDE. An attacker
could create a malicious web site containing carefully crafted JavaScript
code that would trigger this flaw and possibly lead to arbitrary code
execution. The Common Vulnerabilities and Exposures project assigned the
name CVE-2006-0019 to this issue.
NOTE: this issue does not affect KDE in Red Hat Enterprise Linux 3 or 2.1.
Users of KDE should upgrade to these updated packages, which contain a
backported patch from the KDE security team correcting this issue as well
as two bug fixes.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | x86_64 | kdelibs-devel | <Â 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.x86_64.rpm |
RedHat | any | src | kdelibs | <Â 3.3.1-3.14 | kdelibs-3.3.1-3.14.src.rpm |
RedHat | any | s390x | kdelibs | <Â 3.3.1-3.14 | kdelibs-3.3.1-3.14.s390x.rpm |
RedHat | any | ppc | kdelibs-devel | <Â 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.ppc.rpm |
RedHat | any | i386 | kdelibs | <Â 3.3.1-3.14 | kdelibs-3.3.1-3.14.i386.rpm |
RedHat | any | s390x | kdelibs-devel | <Â 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.s390x.rpm |
RedHat | any | ppc | kdelibs | <Â 3.3.1-3.14 | kdelibs-3.3.1-3.14.ppc.rpm |
RedHat | any | s390 | kdelibs-devel | <Â 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.s390.rpm |
RedHat | any | i386 | kdelibs-devel | <Â 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.i386.rpm |
RedHat | any | ia64 | kdelibs-devel | <Â 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.ia64.rpm |