DEBIAN-CVE-2022-24986

KDE KCron through 21.12.2 uses a temporary file in /tmp when saving, but reuses the filename during an editing session. Thus, someone watching it be created the first time could potentially intercept the file the following time, enabling that person to run unauthorized commands...

PT-2022-17033 · Kde +2 · Kde Kcron +2

Name of the Vulnerable Software and Affected Versions: KDE KCron versions prior to 21.12.3 Description: The issue allows an attacker to potentially intercept a temporary file and run unauthorized commands. This is due to the reuse of a filename in the /tmp directory during an editing session...