Plasma Workspace 安全漏洞

Plasma Workspace is an open-source application developed by the KDE GitHub Mirror project. It serves to run various components required for a Plasma-based environment. Plasma Workspace has a security vulnerability that stems from multiple issues, which may allow an infected plasmalogin service...

CVE-2026-41525

KDE Dolphin before 25.12.3 allows applications in a Flatpak or with AppArmor confinement to open folders outside of the application sandbox without additional scrutiny. Dolphin's implementation of the FileManager1 protocol allows the path given to be any type of file, including scripts or...

[SECURITY] Fedora 43 Update: smb4k-4.0.6-1.fc43

Smb4K is an SMB/CIFS share browser for KDE. It uses the Samba software suite to access the SMB/CIFS shares of the local network neighborhood. Its purpose is to provide a program that's easy to use and has as many features as possible...

[SECURITY] Fedora 44 Update: plasma-systemsettings-6.6.4-1.fc44

KDE System Settings application...

[SECURITY] Fedora 44 Update: polkit-kde-6.6.4-1.fc44

Provides Policy Kit Authentication Agent that nicely fits to KDE...

[SECURITY] Fedora 44 Update: plasma-print-manager-6.6.4-1.fc44

Printer management for KDE...

[SECURITY] Fedora 44 Update: kde-cli-tools-6.6.4-1.fc44

Provides several KDE and Plasma specific command line tools to allow better interaction with the system...

KDE Applications 安全漏洞

KDE Applications is an open source software suite from the KDE community that provides over 200 applications that run on any Linux desktop as well as other platforms. A security vulnerability exists in KDE Applications versions prior to 25.08.0, which stems from the use of QIODevice::ReadWrite ma...

KDE KMail 安全漏洞

KDE KMail is an email component in Kontact a personal information management suite from the KDE community. A security vulnerability exists in KDE KMail versions prior to 6.2.0 that stems from plaintext HTTP being used for URLs to retrieve configurations, which allows an attacker to trigger the us...

KDE Workspace Path Traversal Vulnerability

KDE Workspace is a virtual desktop tool from the KDE community. A path traversal vulnerability exists in KDE Workspace 5.93.0 and earlier versions, which stems from a path traversal vulnerability in the component /calendar/eventpluginsmanager.cpp...

PT-2023-21830 · Qualcomm · Qualcomm Fastconnect 6800

Name of the Vulnerable Software and Affected Versions: Qualcomm FastConnect 6800 affected versions not specified Description: The issue is related to memory corruption in WLAN Firmware when parsing received GTK Keys in GTK KDE. This can potentially lead to security concerns. The severity of this...

SUSE CVE-2002-1306

Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow 1 local and possibly remote attackers to execute arbitrary code via the "lisa" daemon, and 2 remote attackers to execute arbitrary code via a certain "lan://" URL...

SUSE CVE-2003-0988

Buffer overflow in the VCF file information reader for KDE Personal Information Management kdepim suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file...

SUSE CVE-2004-0689

KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files...

SUSE CVE-2004-1125

Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted PD...

SUSE CVE-2004-1145

Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier 1 allow access to restricted Java classes via JavaScript and 2 do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary file...

SUSE CVE-2005-1046

Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file...

SUSE CVE-2005-1920

The 1 Kate and 2 Kwrite applications in KDE KDE 3.2.x through 3.4.0 do not properly set the same permissions on the backup file as were set on the original file, which could allow local users and possibly remote attackers to obtain sensitive information...

SUSE CVE-2006-2933

kdesktoplock in kdebase before 3.1.3-5.11 for KDE in Red Hat Enterprise Linux RHEL 3 does not properly terminate, which can prevent the screensaver from activating or prevent users from manually locking the desktop...

SUSE CVE-2008-4382

Konqueror in KDE 3.5.9 allows remote attackers to cause a denial of service application crash via Javascript that calls the alert function with a URL-encoded string of a large number of invalid characters...