eSikker.dk

Sårbarhed Detalje Syn
Legend : critical high medium low other
id 43153
Risiko other
Familie Ubuntu Local Security Checks
Kategori infos
Navn USN872-1 : kdebase-runtime vulnerabilities
Sammenfatning kdebase-runtime vulnerabilities
Beskrivelse Synopsis :

These remote packages are missing security patches :
- kde-icons-oxygen
- kdebase-runtime
- kdebase-runtime-bin-kde4
- kdebase-runtime-data
- kdebase-runtime-data-common
- kdebase-runtime-dbg
- khelpcenter
- khelpcenter4
- plasma-scriptengine-javascript

Description :

It was discovered that the KIO subsystem of KDE did not properly perform
input validation when processing help:// URIs. If a user or KIO application
processed a crafted help:// URI, an attacker could trigger JavaScript
execution or access files via directory traversal.

Solution :

Upgrade to :
- kde-icons-oxygen-4.2.2-0ubuntu1.1 (Ubuntu 9.04)
- kdebase-runtime-4.3.2-0ubuntu4.1 (Ubuntu 9.10)
- kdebase-runtime-bin-kde4-4.3.2-0ubuntu4.1 (Ubuntu 9.10)
- kdebase-runtime-data-4.3.2-0ubuntu4.1 (Ubuntu 9.10)
- kdebase-runtime-data-common-4.3.2-0ubuntu4.1 (Ubuntu 9.10)
- kdebase-runtime-dbg-4.3.2-0ubuntu4.1 (Ubuntu 9.10)
- khelpcenter-4.3.2-0ubuntu4.1 (Ubuntu 9.10)
- khelpcenter4-4.3.2-0ubuntu4.1 (Ubuntu 9.10)
- plasma-scriptengine-javascript-4.3.2-0ubuntu4.1 (Ubuntu 9.10)

Risk factor :

High
CVE NOCVE
Bugtraq NOBID
Copyright (C) 2009 Canonical, Inc. / NASL script (C) 2009 Tenable Network Security, Inc.
166
 PCbix kan findes hos twitter PC håndværkeren - Er din PC i stykker? Banken lukkede din netbank? Har din PC virus? Ekstern USB harddisk kasse med eller uden harddisk. Lillekilde i Valby Studiehuset Ole Opfinder Hosted by FLIFL
design by Pingvino