CVE-2026-42095

CVE-2026-42095 affects bookserver in KDE Arianna up to version 26.04.0 (pre-26.04.1). Affected component allows an attacker with local access to read arbitrary files by guessing a URL over a socket connection, as described in the vulnerability description. Root cause: insufficient access control ...

EUVD-2010-0467

Malware in sbrugna...

SUSE CVE-2010-1000

Directory traversal vulnerability in KGet in KDE SC 4.0.0 through 4.4.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file...

CVE-2011-1168

Cross-site scripting XSS vulnerability in the KHTMLPart::htmlError function in khtml/khtmlpart.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable web site...

Fedora 12 : PyQt4-4.7.2-2.fc12 / kdeaccessibility-4.4.2-1.fc12 / kdeadmin-4.4.2-1.fc12 / etc (2010-6096)

This update set updates the KDE Software Compilation KDE SC to KDE SC 4.4.2, which has a number of improvements: Possible crashes in Plasma, Dolphin and Okular have been fixed The Microblog applet now shows the correct time in the timeline The audioplayer KRunner plugin has been fixed to not free...

Fedora 13 : kde-l10n-4.4.3-1.fc13 / kdeaccessibility-4.4.3-1.fc13.1 / kdeadmin-4.4.3-1.fc13.1 / etc (2010-8577)

This update set updates the KDE Software Compilation KDE SC to KDE SC 4.4.3, which has a number of improvements: Numerous fixes in Konsole, KDE's terminal emulator, among them two possible crashers in session management Flash plugin support in KHTML has been enhanced to work with newest Youtube...

Fedora 11 : kde-l10n-4.4.3-1.fc11 / kdeaccessibility-4.4.3-1.fc11.1 / kdeadmin-4.4.3-1.fc11.1 / etc (2010-8547)

This update set updates the KDE Software Compilation KDE SC to KDE SC 4.4.3, which has a number of improvements: Numerous fixes in Konsole, KDE's terminal emulator, among them two possible crashers in session management Flash plugin support in KHTML has been enhanced to work with newest Youtube...

Fedora 12 : kde-l10n-4.4.3-1.fc12 / kdeaccessibility-4.4.3-1.fc12.1 / kdeadmin-4.4.3-1.fc12.1 / etc (2010-8544)

This update set updates the KDE Software Compilation KDE SC to KDE SC 4.4.3, which has a number of improvements: Numerous fixes in Konsole, KDE's terminal emulator, among them two possible crashers in session management Flash plugin support in KHTML has been enhanced to work with newest Youtube...

FreeBSD Ports: kdebase

The remote host is missing an update to the system as announced in the referenced advisory. VID 3987c5d1-47a9-11df-a0d5-0016d32f24fb OpenVAS Vulnerability Test $ Description: Auto generated from VID 3987c5d1-47a9-11df-a0d5-0016d32f24fb Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

Race condition

Race condition in backend/ctrl.c in KDM in KDE Software Compilation SC 2.2.0 through 4.4.2 allows local users to change the permissions of arbitrary files, and consequently gain privileges, by blocking the removal of a certain directory that contains a control socket, related to improper...

CVE-2010-0436

CVE-2010-0436 is a KDE KDM local privilege-escalation via a race condition in backend/ctrl.c; affects KDE SC 2.2.0–4.4.2, enabling a local user to change permissions of arbitrary files by blocking removal of a directory containing a control socket (ksm interaction). The issue is acknowledged in m...

security flaw

Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted PD...

Debian DSA-167-1 : kdelibs - XSS

A cross site scripting problem has been discovered in Konqueror, a famous browser for KDE and other programs using KHTML. The KDE team reportsthat Konqueror's cross site scripting protection fails to initialize the domains on sub-iframes correctly. As a result, JavaScript is able to access any...

Code execution via PDF and PS in KDE

Command contained in PS and PDF files may be eceuted...