Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 493
Alerts This Week
Warning Icon 1 493

Ubuntu 14.04 LTS USN-3223-1 Severe: kde-libs Information Exposure

ubuntu
Calendar Grey March 9, 2017
Dist Ubuntu Esm H88
A security flaw in KDE-Libs can lead to the unauthorized sharing of confidential data online. Ensure Ubuntu is updated to reduce potential threats.
KDE-Libs could be made to expose sensitive information over the network.

Summary

KDE-Libs could be made to expose sensitive information over the network.

Software Description:

- kde4libs: KDE 4 core applications and libraries

Details:

Itzik Kotler, Yonatan Fridburg, and Amit Klein discovered that KDE-Libs

incorrectly handled certain PAC files. A remote attacker could possibly use

this issue to obtain sensitive information.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
  kdelibs5-plugins                4:4.13.3-0ubuntu0.4

Ubuntu 12.04 LTS:
  kdelibs5-plugins                4:4.8.5-0ubuntu0.6

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

https://ubuntu.com/security/notices/USN-3223-1

CVE-2017-6410

Severity
important
Lowest
Low
Medium
High
Critical

March 09, 2017

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.