[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-4116-1 plasma-workspace -- plasma-workspace

ID: oval:org.secpod.oval:def:603274Date: (C)2018-02-28   (M)2023-04-19
Class: PATCHFamily: unix




Krzysztof Sieluzycki discovered that the notifier for removable devices in the KDE Plasma workspace performed insufficient sanitisation of FAT/VFAT volume labels, which could result in the execution of arbitrary shell commands if a removable device with a malformed disk label is mounted.

Platform:
Debian 9.x
Product:
libweather-ion7
libkworkspace5-5
sddm-theme-debian-breeze
sddm-theme-breeze
libplasma-geolocation-interface5
libtaskmanager6
plasma-workspace
Reference:
DSA-4116-1
CVE-2018-6791
CVE    1
CVE-2018-6791
CPE    3
cpe:/o:debian:debian_linux:9.0
cpe:/o:debian:debian_linux:9.x
cpe:/a:plasma-workspace_project:plasma-workspace

© SecPod Technologies