Mageia: Security Advisory (MGASA-2017-0473)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2014-0480)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2014-0478)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2015-0044)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:0512-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2014:0885-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2017-0473 Updated kdebase4-runtime packages fix security vulnerability

A user could sneak an unicode string terminator in the kdesu invocation, which could hide the fact that more commands could be executed CVE-2016-7787...

Updated kdebase4-runtime packages fix security vulnerability

A user could sneak an unicode string terminator in the kdesu invocation, which could hide the fact that more commands could be executed CVE-2016-7787...

SUSE-SU-2016:0303-1 Security update for kdebase4-workspace

This update for kdebase4-workspace fixes the following issues: - CVE-2014-8651: Privilege escalation via KDE Clock KCM helper when non-default polkit settings are used bsc904625 The following non-security bugs were fixed: - bsc929718: Make kdm recognize an IPv6 localhost address as localhost...

openSUSE Security Update : kdebase4-runtime / kdelibs4 / konversation / etc (openSUSE-2015-251)

KDE and QT were updated to fix security issues and bugs. The following vulerabilities were fixed : - CVE-2014-0190: Malformed GIF files could have crashed QT based applications - CVE-2015-0295: Malformed BMP files could have crashed QT based applications - CVE-2014-8600: Multiple cross-site...

SuSE 11.3 Security Update : kdebase4-runtime (SAT Patch Number 10404)

kdebase4-runtime has been updated to fix one security issue : - Added gpg based encryption support to kwallet. bnc857200. CVE-2013-7252 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The...

SUSE-SU-2015:0512-1 Security update for kdebase4-runtime

kdebase4-runtime has been updated to fix one security issue: CVE-2013-7252: Added gpg based encryption support to kwallet bnc857200. Security Issues: CVE-2013-7252...

Updated kdebase4-runtime packages fix CVE-2013-7252 and several bugs

Updated kdebase4-runtime packages fix security vulnerability: kwalletd in KWallet before KDE Applications 14.12.0 uses Blowfish with ECB mode instead of CBC mode when encrypting the password store, which makes it easier for attackers to guess passwords via a codebook attack CVE-2013-7252. This...

MGASA-2014-0478 Updated kdebase4-runtime and kwebkitpart packages fix security vulnerability

kwebkitpart and the bookmarks:// io slave were not sanitizing input correctly allowing to some javascript being executed on the context of the referenced hostname CVE-2014-8600...

Updated kdebase4-runtime and kwebkitpart packages fix security vulnerability

kwebkitpart and the bookmarks:// io slave were not sanitizing input correctly allowing to some javascript being executed on the context of the referenced hostname CVE-2014-8600...

openSUSE Security Update : kdelibs4 (openSUSE-SU-2014:0981-1)

KDE4 Libraries and Workspace received a security fix to fix a race condition in DBUS/Polkit authorization, where local attackers could potentially call root KDE services without proper authenticiation. CVE-2014-5033 Additionaly a interlaced GIF display bug in KHTML was fixed. kde330148 This updat...

SuSE 11.3 Security Update : kdebase4-workspace (SAT Patch Number 9467)

This kdebase4-workspace update fixes two security issues : - NULL pointer dereference in KDM and KCheckPass. CVE-2013-4132 - Memory leak that could lead to a denial of service. CVE-2013-4133 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugi...

openSUSE Security Update : kdebase4-workspace (openSUSE-SU-2013:1291-1)

kdebase4-workspace received fixes for : - KDM: a potential crash in crypt was fixed bnc829857, CVE-2013-4132 - Fixes plasma systemtray memory leak with legacy icons kde314919, bnc817932, bnc829857, CVE-2013-4133 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

openSUSE Security Update : kdebase4-workspace (openSUSE-SU-2013:1253-1)

Added changesetra2bab28a.diff from upstream 4.11 branch, fixes kde321576 - Added kdm-kcheckpass-Check-for-NULL-return-from-crypt-3-an.pat ch, bnc829857, CVE-2013-4132 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

MDVA-2009:157 : kdebase4-workspace

krandrtray from KDE4 is known to have some issues. A patch was added that makes krandrtray open its configuration module when the system tray icon is clicked. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on...