KDE workspace vulnerability

2014-11-11T00:00:00
ID USN-2402-1
Type ubuntu
Reporter Ubuntu
Modified 2014-11-11T00:00:00

Description

David Edmundson discovered that the KDE Clock KCM policykit helper did not properly guard against untrusted input. Under certain circumstances, a process running under the user’s session could exploit this to run programs as the administrator.