Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:31421
HistoryDec 01, 2014 - 12:00 a.m.

[USN-2414-1] KDE-Runtime vulnerability

2014-12-0100:00:00
vulners.com
25
JSON

==========================================================================
Ubuntu Security Notice USN-2414-1
November 24, 2014

kde-runtime vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 12.04 LTS

Summary:

KDE-Runtime could be made to run arbitrary javascript.

Software Description:

  • kde-runtime: runtime components from the official KDE release

Details:

Tim Brown and Darron Burton discovered that KDE-Runtime incorrectly handled
input validation. An attacker could possibly use this issue to execute
arbitrary javascript.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 LTS:
kde-runtime 4:4.8.5-0ubuntu0.3

After a standard system update you need to restart your session to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2414-1
CVE-2014-8600

Package Information:
https://launchpad.net/ubuntu/+source/kde-runtime/4:4.8.5-0ubuntu0.3

– ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Related

nessus 8
packetstorm 1
prion 1
openvas 8
fedora 6
cve 1
ubuntucve 1
freebsd 1
debiancve 1
ubuntu 1
mageia 1
securityvulns 1
nessus
nessus
FreeBSD : kwebkitpart, kde-runtime -- insufficient input validation (890b6b22-70fa-11e4-91ae-5453ed2e2b49)
2014-11-21 00:00:00
Fedora 19 : kwebkitpart-1.3.4-5.fc19 (2014-15124)
2014-12-07 00:00:00
Fedora 21 : kwebkitpart-1.3.4-5.fc21 (2014-15150)
2014-12-04 00:00:00
packetstorm
packetstorm
IO Slaves KDE Insufficient Input Validation
2014-11-19 00:00:00
prion
prion
Cross site scripting
2014-12-08 11:59:00
openvas
openvas
Fedora Update for kwebkitpart FEDORA-2014-15130
2014-12-06 00:00:00
Ubuntu: Security Advisory (USN-2414-1)
2022-08-26 00:00:00
Mageia: Security Advisory (MGASA-2014-0478)
2022-01-28 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: kde-runtime-4.14.3-2.fc20
2014-11-25 15:30:31
[SECURITY] Fedora 19 Update: kwebkitpart-1.3.4-5.fc19
2014-12-07 04:33:12
[SECURITY] Fedora 21 Update: kde-runtime-4.14.3-2.fc21
2014-12-03 17:16:28
cve
cve
CVE-2014-8600
2014-12-08 11:59:00
ubuntucve
ubuntucve
CVE-2014-8600
2014-11-20 00:00:00
freebsd
freebsd
kwebkitpart, kde-runtime -- insufficient input validation
2014-11-13 00:00:00
debiancve
debiancve
CVE-2014-8600
2014-12-08 11:59:00
ubuntu
ubuntu
KDE-Runtime vulnerability
2014-11-24 00:00:00
mageia
mageia
Updated kdebase4-runtime and kwebkitpart packages fix security vulnerability
2014-11-21 15:44:16
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2014-12-01 00:00:00
JSON
Related for SECURITYVULNS:DOC:31421
nessus8packetstorm1prion1openvas8fedora6cve1ubuntucve1freebsd1debiancve1ubuntu1mageia1securityvulns1