Explore top 10 tips to secure your open-source projects now. Read More
×
KDE-Runtime could be made to run arbitrary javascript.
Software Description:
- kde-runtime: runtime components from the official KDE release
Details:
Tim Brown and Darron Burton discovered that KDE-Runtime incorrectly handled
input validation. An attacker could possibly use this issue to execute
arbitrary javascript.
The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: kde-runtime 4:4.8.5-0ubuntu0.3 After a standard system update you need to restart your session to make all the necessary changes.
https://ubuntu.com/security/notices/USN-2414-1
CVE-2014-8600
Get the latest Linux and open source security news straight to your inbox.