CVE-2019-14744

Related Files

Red Hat Security Advisory 2020-2833-01

Posted Jul 7, 2020

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2833-01 - The K Desktop Environment is a graphical desktop environment for the X Window System. The kdelibs packages include core libraries for the K Desktop Environment. Issues addressed include a code execution vulnerability.

tags | advisory, code execution

systems | linux, redhat

advisories | CVE-2019-14744

SHA-256 | cfe2f776112741a228438beaae6abbb11c05570959579901ea81fc916f2d8906

Download | Favorite | View

Red Hat Security Advisory 2019-2606-01

Posted Sep 3, 2019

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2606-01 - The K Desktop Environment is a graphical desktop environment for the X Window System. The kdelibs packages include core libraries for the K Desktop Environment. Issues addressed include a code execution vulnerability.

tags | advisory, code execution

systems | linux, redhat

advisories | CVE-2019-14744

SHA-256 | 02b63b8a2f7fb8a8aad16a025ce384a5871d50f08e63d4bc9589b940af7f2df9

Download | Favorite | View

Ubuntu Security Notice USN-4100-1

Posted Aug 19, 2019

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4100-1 - It was discovered that KConfig and KDE libraries have a vulnerability where an attacker could hide malicious code under desktop and configuration files. It was discovered that KConfig allows remote attackers to write to arbitrary files via a ../ in a filename in an archive file.

tags | advisory, remote, arbitrary

systems | linux, ubuntu

advisories | CVE-2016-6232, CVE-2019-14744

SHA-256 | 94d50b13c51638daf9db02d19ba31bdcae667c02371857be73dd9cdd16b2bfb4

Download | Favorite | View

Gentoo Linux Security Advisory 201908-07

Posted Aug 15, 2019

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201908-7 - A vulnerability has been found in KDE KConfig that could allow a remote attacker to execute arbitrary code. Versions less than 5.60.0-r1 are affected.

tags | advisory, remote, arbitrary

systems | linux, gentoo

advisories | CVE-2019-14744

SHA-256 | 756b1d5aebf9181f115da61fc0570235d2b4b76cbc6323f489ba8caf46b8d6c0

Download | Favorite | View

Debian Security Advisory 4494-1

Posted Aug 12, 2019

Authored by Debian | Site debian.org

Debian Linux Security Advisory 4494-1 - Dominik Penner discovered that KConfig, the KDE configuration settings framework, supported a feature to define shell command execution in .desktop files. If a user is provided with a malformed .desktop file (e.g. if it's embedded into a downloaded archive and it gets opened in a file browser) arbitrary commands could get executed. This update removes this feature.

tags | advisory, arbitrary, shell

systems | linux, debian

advisories | CVE-2019-14744

SHA-256 | cffdf8b2f8be70b1d490457cf9c87e48056edad5fc1ecd56c620082e3c680957

Download | Favorite | View

Slackware Security Advisory - kdelibs Updates

Posted Aug 8, 2019

Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New kdelibs packages are available for Slackware 14.2 and -current to fix a security issue.

tags | advisory

systems | linux, slackware

advisories | CVE-2019-14744

SHA-256 | 04bdc9d7b65ab63d35b69b934b1ca950c4ad2e98b980fef98a3dc3026cbb85ce

Download | Favorite | View