Alerts This Week
Warning Icon 1 1,179
Alerts This Week
Warning Icon 1 1,179

Debian DSA 631-1: Moderate kdelibs FTP Command Execution Risk

debian
Calendar Grey January 10, 2005
Debian Logo
The Debian DSA 632-1 notice pertains to a critical vulnerability present in kdelibs that impacts FTP functionalities. Users are highly urged to implement updates without delay.
Thiago Macieira discovered a vulnerability in the kioslave library, which is part of kdelibs, which allows a remote attacker to execute arbitrary FTP commands via an ftp:// URL tha...

Summary


For the unstable distribution (sid) this problem will be fixed soon.

We recommend that you upgrade your kdelibs3 package.


Upgrade Instructions
--------------------wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.0 alias woody
-------------------------------- Source archives:

Size/MD5 checksum: 1355 9f1e4e8b1a72437dc747d3bfe888c666
Size/MD5 checksum: 60430 c3a698d55e20f3728b4bbe97e9526811
Size/MD5 checksum: 6396699 7a9277a2e727821338f751855c2ce5d3

Architecture independent components:

Size/MD5 checksum: 2564706 9a50557f2f62784657a6e1e32082ecf2

Al...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

--------------------------------------------------------------------------Package: kdelibs
CVE ID: CAN-2004-1165

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here