Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:30963
HistoryAug 04, 2014 - 12:00 a.m.

[USN-2304-1] KDE-Libs vulnerability

2014-08-0400:00:00
vulners.com
19
JSON

==========================================================================
Ubuntu Security Notice USN-2304-1
July 31, 2014

kde4libs vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 14.04 LTS
  • Ubuntu 12.04 LTS

Summary:

kauth could be tricked into bypassing polkit authorizations.

Software Description:

  • kde4libs: KDE 4 core applications and libraries

Details:

It was discovered that kauth was using polkit in an unsafe manner. A local
attacker could possibly use this issue to bypass intended polkit
authorizations.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
kdelibs5-plugins 4:4.13.2a-0ubuntu0.3

Ubuntu 12.04 LTS:
kdelibs5-plugins 4:4.8.5-0ubuntu0.4

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2304-1
CVE-2014-5033

Package Information:
https://launchpad.net/ubuntu/+source/kde4libs/4:4.13.2a-0ubuntu0.3
https://launchpad.net/ubuntu/+source/kde4libs/4:4.8.5-0ubuntu0.4

– ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Related

fedora 87
openvas 94
nessus 10
redhat 1
oraclelinux 1
securityvulns 1
freebsd 1
ubuntu 1
centos 1
debian 1
osv 1
fedora
fedora
[SECURITY] Fedora 20 Update: kopete-4.14.1-1.fc20
2014-09-27 09:47:48
[SECURITY] Fedora 20 Update: ruby-korundum-4.14.1-1.fc20
2014-09-27 09:47:51
[SECURITY] Fedora 20 Update: konsole-4.14.1-2.fc20
2014-09-27 09:47:53
openvas
openvas
Fedora Update for kde-print-manager FEDORA-2014-11448
2014-10-01 00:00:00
Fedora Update for kdemultimedia FEDORA-2014-11448
2014-10-01 00:00:00
Fedora Update for ktouch FEDORA-2014-11448
2014-10-01 00:00:00
nessus
nessus
Fedora 20 : akonadi-1.13.0-2.fc20 / amor-4.14.1-1.fc20 / analitza-4.14.1-1.fc20 / ark-4.14.1-1.fc20 / etc (2014-11448)
2014-09-29 00:00:00
Fedora 20 : polkit-qt-0.112.0-1.fc20 (2014-9641)
2014-09-22 00:00:00
openSUSE Security Update : kdelibs4 (openSUSE-SU-2014:0981-1)
2014-08-12 00:00:00
redhat
redhat
(RHSA-2014:1359) Important: polkit-qt security update
2014-10-06 00:00:00
oraclelinux
oraclelinux
polkit-qt security update
2014-10-06 00:00:00
securityvulns
securityvulns
KDE restrictions bypass
2014-08-04 00:00:00
freebsd
freebsd
kdelibs -- KAuth PID Reuse Flaw
2014-07-30 00:00:00
ubuntu
ubuntu
KDE-Libs vulnerability
2014-07-31 00:00:00
centos
centos
polkit security update
2014-10-06 18:04:24
debian
debian
[SECURITY] [DSA 3004-1] kde4libs security update
2014-08-10 22:34:33
osv
osv
kde4libs - security update
2014-08-11 00:00:00
JSON
Related for SECURITYVULNS:DOC:30963
fedora87openvas94nessus10redhat1oraclelinux1securityvulns1freebsd1ubuntu1centos1debian1osv1