157 matches found
PT-2025-30582 · Deepin · Lastore-Daemon
Name of the Vulnerable Software and Affected Versions: lastore-daemon versions 0.9.53-1 through 0.9.66-1 Description: A local privilege escalation vulnerability exists in lastore-daemon, the system package manager daemon used in Deepin Linux. The D-Bus configuration permits any user in the sudo...
[SECURITY] Fedora 42 Update: dtk6widget-6.0.27-5.fc42
Deepin Tool Kit WidgetDtkWidget provides the base widgets on Deepin...
[SECURITY] Fedora 42 Update: dtk6gui-6.0.27-6.fc42
Deepin Tool Kit DtkGui is the development graphical user interface of all C++/Qt Developer work on Deepin...
[SECURITY] Fedora 42 Update: dtk6core-6.0.27-5.fc42
Deepin tool kit core modules...
CVE-2023-50254
Deepin Linux's default document reader deepin-reader software suffers from a serious vulnerability in versions prior to 6.0.7 due to a design flaw that leads to remote command execution via crafted docx document. This is a file overwrite vulnerability. Remote code execution RCE can be achieved by...
The vulnerability of the Deepin operating system’s dde-api-proxy component allows a hacker to gain root privileges.
The vulnerability of the dde-api-proxy component in the Deepin operating system is related to insufficient verification of the source of the communication channel. Exploiting this vulnerability can allow an attacker to gain root privileges...
CVE-2025-23222
An issue was discovered in Deepin dde-api-proxy through 1.0.19 in which unprivileged users can access D-Bus services as root. Specifically, dde-api-proxy runs as root and forwards messages from arbitrary local users to legacy D-Bus methods in the actual D-Bus services, and the actual D-Bus servic...
CVE-2025-23222
An issue was discovered in Deepin dde-api-proxy through 1.0.19 in which unprivileged users can access D-Bus services as root. Specifically, dde-api-proxy runs as root and forwards messages from arbitrary local users to legacy D-Bus methods in the actual D-Bus services, and the actual D-Bus servic...
CVE-2025-23222
Deepin dde-api-proxy (v1.0.19 and earlier) exposes a local privilege-escalation flaw: the daemon runs as root and forwards local user D-Bus requests to legacy D-Bus services, which do not detect the proxy context. This can allow unprivileged users to access D-Bus methods that should be restricted...
SUSE CVE-2025-23222
An issue was discovered in Deepin dde-api-proxy through 1.0.19 in which unprivileged users can access D-Bus services as root. Specifically, dde-api-proxy runs as root and forwards messages from arbitrary local users to legacy D-Bus methods in the actual D-Bus services, and the actual D-Bus servic...
CVE-2023-50700
Insecure Permissions vulnerability in Deepin dde-file-manager 6.0.54 and earlier allows privileged operations to be called by unprivileged users via the D-Bus method...
CVE-2023-50700
Insecure Permissions vulnerability in Deepin dde-file-manager 6.0.54 and earlier allows privileged operations to be called by unprivileged users via the D-Bus method...
CVE-2023-50700
Insecure Permissions vulnerability in Deepin dde-file-manager 6.0.54 and earlier allows privileged operations to be called by unprivileged users via the D-Bus method...
CVE-2023-50700
CVE-2023-50700 affects Deepin dde-file-manager up to version 6.0.54. The vulnerability is described as an insecure permission issue where unprivileged users can invoke privileged operations via a D-Bus method. The common descriptions across SUSE, Red Hat, NVD, CNNVD, and others reiterate the same...
CVE-2023-50700
Insecure Permissions vulnerability in Deepin dde-file-manager 6.0.54 and earlier allows privileged operations to be called by unprivileged users via the D-Bus method...
PT-2024-13954 · Deepin · Deepin Dde-File-Manager
Name of the Vulnerable Software and Affected Versions: Deepin dde-file-manager versions 6.0.54 and earlier Description: The issue allows privileged operations to be called by unprivileged users via the D-Bus method. Recommendations: For Deepin dde-file-manager versions 6.0.54 and earlier, at the...
OPENSUSE-SU-2024:13536-1 deepin-reader-5.10.23-2.1 on GA media
These are all security issues fixed in the deepin-reader-5.10.23-2.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:13541-1 deepin-compressor-5.12.13-2.1 on GA media
These are all security issues fixed in the deepin-compressor-5.12.13-2.1 package on the GA media of openSUSE Tumbleweed...
Fedora: Security Advisory for deepin-qt5integration (FEDORA-2024-2e27372d4c)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for deepin-qt5platform-plugins (FEDORA-2024-2e27372d4c)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...