Astra Linux – Vulnerability in ktexteditor, Kate

The LSP Language Server Protocol plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91.0 attempts to execute the associated LSP server binary when opening a file of a given type. If this binary is absent from the PATH, it will attempt to run the LSP server binary in the directory of the...

[SECURITY] Fedora 44 Update: kf6-syntax-highlighting-6.25.0-1.fc44

KDE Frameworks 6 Syntax highlighting engine for Kate syntax definitions...

EUVD-2014-5709

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-10361

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary files in the KTextEditor's kauthktexteditorhelper service as utiliz...

Linux Distros Unpatched Vulnerability : CVE-2022-23853

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The LSP Language Server Protocol plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91.0 tries to execute the associated LSP server binary when opening ...

JEPaaS SQL Injection Vulnerability

JEPaaS is a rapid development platform from China Kate Weiye JEPaaS. A SQL injection vulnerability exists in JEPaaS v7.2.8, which originates from the lack of validation of the orderSQL parameter of /homePortal/loadUserMsg for externally entered SQL statements. An attacker can exploit this...

Malicious code in down_load_ebook_the_adult_attachment_workbook_by_kate_homily_d3q9x (npm)

--- -= Per source details. Do not edit below this line.=-...

Women in Tech: Remain Open to Unexpected Opportunities

Akamai CIO Kate Prouty explores the benefits of remaining open to new opportunities and salutes the bond among women in tech...

OPENSUSE-SU-2024:11801-1 kate-21.12.2-1.1 on GA media

These are all security issues fixed in the kate-21.12.2-1.1 package on the GA media of openSUSE Tumbleweed...

SQL Injection Vulnerability in JEPaaS Platform of Beijing Kate Weiye Technology Co.

The JEPaaS platform is a low-code rapid development. Ltd. JEPaaS Platform suffers from a SQL injection vulnerability that can be exploited by attackers to obtain sensitive information from the database...

kate-psy.ru Cross Site Scripting vulnerability OBB-3905676

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

GLSA-202401-21 : KTextEditor: Arbitrary Local Code Execution

The remote host is affected by the vulnerability described in GLSA-202401-21 KTextEditor: Arbitrary Local Code Execution - The LSP Language Server Protocol plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91.0 tries to execute the associated LSP server binary when opening a file of a...

SUSE CVE-2005-1920

The 1 Kate and 2 Kwrite applications in KDE KDE 3.2.x through 3.4.0 do not properly set the same permissions on the backup file as were set on the original file, which could allow local users and possibly remote attackers to obtain sensitive information...

SUSE CVE-2018-10361

An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary files in the KTextEditor's kauthktexteditorhelper service as utilized in the Kate text editor can allow other unprivileged users on the local system to gain root privileges. The attack occurs when one use...

SUSE CVE-2022-23853

The LSP Language Server Protocol plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91.0 tries to execute the associated LSP server binary when opening a file of a given type. If this binary is absent from the PATH, it will try running the LSP server binary in the directory of the file th...

Never Mind the Ears, Here's Security Nation

It's another year down and another season down for Security Nation. With the close of our fifth season, I wanted to take a minute here to reflect on who we spoke with and what we talked about. The show titles focus as you would expect on the individual interview subjects, but there's a bunch of...

The vulnerability of the Language Server Protocol plugin for the text editor Kate allows a hacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Language Server Protocol plugin for the text editor Kate is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, compromise its integrity, and cause service failures...

Ubuntu: Security Advisory (USN-150-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-23853

The LSP Language Server Protocol plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91.0 tries to execute the associated LSP server binary when opening a file of a given type. If this binary is absent from the PATH, it will try running the LSP server binary in the directory of the file th...

openSUSE 15 Security Update : libqt5-qtbase (openSUSE-SU-2022:0841-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0841-1 advisory. - The LSP Language Server Protocol plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91.0 tries to execute the associated LSP serv...