[dot] Security: Advisories for kdelibs and Kommander
Dot Stories
stories at kdenews.org
Fri Apr 22 11:44:41 CEST 2005
URL: http://dot.kde.org/1114161430/
From: binner <>
Dept: insecurity
Date: Friday 22/Apr/2005, @11:17
Security: Advisories for kdelibs and Kommander
==============================================
Two security advisories [http://www.kde.org/info/security/] have been
issued by the KDE Security Team [security at kde.org] which both affect KDE
3.2 up to including KDE 3.4: kdelibs
[http://www.kde.org/info/security/advisory-20050421-1.txt] does not
properly perform input validation for image files. Kommander
[http://www.kde.org/info/security/advisory-20050420-1.txt] executes
without user confirmation data files from possibly untrusted locations.
These issues will be fixed in KDE 3.4.1, for older KDE versions patches
are available.
[ftp://ftp.kde.org/pub/kde/security_patches]
More information about the dot-stories
mailing list