AVG-130

Package ark
Status Fixed
Severity High
Type arbitrary command execution
Affected 16.12.0-1
Fixed 16.12.1-1
Current 17.12.2-1 [extra]
Ticket None
Created Tue Jan 10 17:04:38 2017
Issue Severity Remote Type Description
CVE-2017-5330 High No Arbitrary command execution
Opening an url with ark will call KRUN::runURL() which detects the mime-type of the url and runs the appropriate service for that mimetype when found. This...
Date Advisory Package Description
13 Jan 2017 ASA-201701-18 ark arbitrary command execution
References
https://www.kde.org/info/security/advisory-20170112-1.txt