AVG-270

Package kdelibs
Status Fixed
Severity High
Type privilege escalation
Affected 4.14.31-1
Fixed 4.14.32-1
Current 4.14.38-4 [extra]
Ticket None
Created Wed May 10 11:52:39 2017
Issue Severity Remote Type Description
CVE-2017-8422 High No Privilege escalation
KAuth <= 5.33.0 contains a logic flaw in which the service invoking dbus is not properly checked. This allows spoofing the identity of the caller and with...
Date Advisory Package Description
10 May 2017 ASA-201705-13 kdelibs privilege escalation
References
https://commits.kde.org/kdelibs/264e97625abe2e0334f97de17f6ffb52582888ab