3 matches found
KTextEditor Elevation of Privilege Vulnerability
KTextEditor is an editor that provides advanced plain text editing features in KDE Frameworks. A security vulnerability exists in KTextEditor versions 5.34.0 through 5.45.0, which stems from the failure of KTextEditor's kauthktexteditorhelper service to properly handle temporary files. The...
CVE-2018-10361
An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary files in the KTextEditor's kauthktexteditorhelper service as utilized in the Kate text editor can allow other unprivileged users on the local system to gain root privileges. The attack occurs when one use...
CVE-2018-10361
CVE-2018-10361 affects KTextEditor 5.34.0 through 5.45.0 (used by Kate). Insecure handling of temporary files in the kauth_ktexteditor_helper service can let an unprivileged local user gain root privileges via a symlink attack when writing a file into another user’s directory. Impact is local pri...