Download
| Alert*
|
oval:org.secpod.oval:def:602882
kdelibs5-dev is installed oval:org.secpod.oval:def:601754 kdelibs5-dev is installed oval:org.secpod.oval:def:601742 Sebastian Krahmer discovered that Kauth used Policykit insecurely by relying on the process ID. This could result in privilege escalation. oval:org.secpod.oval:def:602878 Several vulnerabilities were discovered in kde4libs, the core libraries for all KDE 4 applications. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2017-6410 Itzik Kotler, Yonatan Fridburg and Amit Klein of Safebreach Labs reported that URLs are not sanitized ... oval:org.secpod.oval:def:2000928 Insecure handling of arguments in helpers oval:org.secpod.oval:def:602583 Andreas Cord-Landwehr discovered that kde4libs, the core libraries for all KDE 4 applications, do not properly handle the extraction of archives with "../" in the file paths. A remote attacker can take advantage of this flaw to overwrite files outside of the extraction folder, if a user is ... |
