Topic 'Re: KDE 4.x Multiple Highly Critical Vulnerabilities' in forum 'Security'

Topic 'Re: KDE 4.x Multiple Highly Critical Vulnerabilities' in forum 'Security' - dslreports.com http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645083 en Sat, 11 Feb 2012 05:06:28 EDT Sat, 11 Feb 2012 05:06:28 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22652080 --
Ubuntu MOTU Developer and Forums Council]]> http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22652080 Fri, 03 Jul 2009 22:28:36 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22646476 http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22646476 Thu, 02 Jul 2009 17:46:51 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22646437
This is one of the reasons I always create MAC profiles for my browser -- it's easy to do and makes bugs like this near impossible to execute. (Actually AppArmor is easy to do, SELinux not so much) ;)

And where is Matunga? :)]]> http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22646437 Thu, 02 Jul 2009 17:38:53 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645328 http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645328 Thu, 02 Jul 2009 13:57:39 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645301 said by SUMware:

And I posted additional information for members.

I'd be happy to delete my post if you'd like, and its information, if you think that it will be of benefit to readers to do so.
No need, your info regard also KDE vulnerabilities, but there was the need to clarify that your reply affect KDE 3.x users. :)
--
Smokey's Security Forums »www.smokey-services.eu/forums/
Smokey's Security Weblog »smokeys.wordpress.com/
Site Member ASAP - Alliance of Security Analysis Professionals]]> http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645301 Thu, 02 Jul 2009 13:52:36 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645281
I'd be happy to delete my post if you'd like, and its information, if you think that it will be of benefit to readers to do so.]]> http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645281 Thu, 02 Jul 2009 13:49:18 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645260 4.x vulnerabilities...]]> http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645260 Thu, 02 Jul 2009 13:46:23 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645239 said by Smokey Bear:

said by SUMware:

Linux distributions provide repository fixes and security updates for users.

More information:
»www.f-secure.com/vulnerabilities···00902981

According to F-Secure, this regard KDE 3.x
Yes. That's what they say.]]> http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645239 Thu, 02 Jul 2009 13:42:45 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645234 said by SUMware:

Linux distributions provide repository fixes and security updates for users.

More information:
»www.f-secure.com/vulnerabilities···00902981
According to F-Secure, this regard KDE 3.x
--
Smokey's Security Forums »www.smokey-services.eu/forums/
Smokey's Security Weblog »smokeys.wordpress.com/
Site Member ASAP - Alliance of Security Analysis Professionals]]> http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645234 Thu, 02 Jul 2009 13:41:11 EDT Re: KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645187
More information:
»www.f-secure.com/vulnerabilities···00902981

PS - Don't run as root, then it's not an issue. ;)]]> http://www.dslreports.com/forum/Re-KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645187 Thu, 02 Jul 2009 13:32:12 EDT KDE 4.x Multiple Highly Critical Vulnerabilities http://www.dslreports.com/forum/KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645083 Multiple highly critical vulnerabilities have been reported in KDE 4.x, which can be exploited by malicious people to compromise a user's system.

Impact: DoS, System access from remote.

CVE references: CVE-2009-0945, CVE-2009-1690

Solution Status: Vendor Workarounds >>

>> »websvn.kde.org/?view=rev&revision=983302, »websvn.kde.org/?view=rev&revision=983316»secunia.com/advisories/35627/
--
Smokey's Security Forums »www.smokey-services.eu/forums/
Smokey's Security Weblog »smokeys.wordpress.com/
Site Member ASAP - Alliance of Security Analysis Professionals]]> http://www.dslreports.com/forum/KDE-4x-Multiple-Highly-Critical-Vulnerabilities-22645083 Thu, 02 Jul 2009 13:13:27 EDT