6 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-24986
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KDE KCron through 21.12.2 uses a temporary file in /tmp when saving, but reuses the filename during an editing session. Thus, someone watching it be created the...
[slackware-security] kcron
New kcron packages are available for Slackware 15.0 to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/kcron-21.12.3-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: kcron: Invalid temporary file handling. Thanks to pbslxw for the...
CVE-2022-24986
KDE KCron through 21.12.2 uses a temporary file in /tmp when saving, but reuses the filename during an editing session. Thus, someone watching it be created the first time could potentially intercept the file the following time, enabling that person to run unauthorized commands...
CVE-2022-24986
KDE KCron through 21.12.2 uses a temporary file in /tmp when saving, but reuses the filename during an editing session. Thus, someone watching it be created the first time could potentially intercept the file the following time, enabling that person to run unauthorized commands...
UBUNTU-CVE-2022-24986
KDE KCron through 21.12.2 uses a temporary file in /tmp when saving, but reuses the filename during an editing session. Thus, someone watching it be created the first time could potentially intercept the file the following time, enabling that person to run unauthorized commands...
CVE-2022-24986
CVE-2022-24986 affects KDE KCron up to version 21.12.2, where saving creates a temporary file in /tmp and reuses the filename during an editing session. This enables a local attacker who watches the file creation to intercept it on the following save and potentially run unauthorized commands. The...