[Bug 562440] [NEW] [CVE-2010-0436] KDM Local Privilege Escalation Vulnerability

Jonathan Thomas echidnaman at kubuntu.org
Tue Apr 13 17:23:58 UTC 2010 

*** This bug is a security vulnerability ***

Public security bug reported:

Binary package hint: kdebase-workspace

Security advisory:
http://www.kde.org/info/security/advisory-20100413-1.txt

The patch: ftp://ftp.kde.org/pub/kde/security_patches/kdebase-
workspace-4.3.5-CVE-2010-0436.diff

Affects all currently-supported Kubuntu versions, from Intrepid to
Lucid.

** Affects: kdebase-workspace (Ubuntu)
     Importance: High
     Assignee: Jonathan Thomas (echidnaman)
         Status: In Progress

** Affects: kdebase-workspace (Ubuntu Lucid)
     Importance: High
     Assignee: Jonathan Thomas (echidnaman)
         Status: In Progress

** Affects: kdebase-workspace (Ubuntu Intrepid)
     Importance: High
         Status: Triaged

** Affects: kdebase-workspace (Ubuntu Jaunty)
     Importance: High
         Status: Triaged

** Affects: kdebase-workspace (Ubuntu Karmic)
     Importance: High
         Status: Triaged

** Changed in: kdebase-workspace (Ubuntu)
   Importance: Undecided => High

** Changed in: kdebase-workspace (Ubuntu)
       Status: New => Triaged

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-0436

** Also affects: kdebase-workspace (Ubuntu Intrepid)
   Importance: Undecided
       Status: New

** Also affects: kdebase-workspace (Ubuntu Jaunty)
   Importance: Undecided
       Status: New

** Also affects: kdebase-workspace (Ubuntu Karmic)
   Importance: Undecided
       Status: New

** Also affects: kdebase-workspace (Ubuntu Lucid)
   Importance: High
       Status: Triaged

** Changed in: kdebase-workspace (Ubuntu Jaunty)
       Status: New => Triaged

** Changed in: kdebase-workspace (Ubuntu Intrepid)
   Importance: Undecided => High

** Changed in: kdebase-workspace (Ubuntu Jaunty)
   Importance: Undecided => High

** Changed in: kdebase-workspace (Ubuntu Intrepid)
       Status: New => Triaged

** Changed in: kdebase-workspace (Ubuntu Karmic)
   Importance: Undecided => High

** Changed in: kdebase-workspace (Ubuntu Karmic)
       Status: New => Triaged

** Changed in: kdebase-workspace (Ubuntu Lucid)
     Assignee: (unassigned) => Jonathan Thomas (echidnaman)

** This bug has been flagged as a security vulnerability

-- 
[CVE-2010-0436] KDM Local Privilege Escalation Vulnerability
https://bugs.launchpad.net/bugs/562440
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kdebase-workspace in ubuntu.

More information about the kubuntu-bugs mailing list