USN-3286-1: KDE-Libs vulnerability
15 May 2017
KDE-Libs could be made to run programs as an administrator if it received specially crafted input.
Releases
Packages
- kde4libs - KDE 4 core applications and libraries
Details
Sebastian Krahmer discovered that the KDE-Libs Kauth component incorrectly
checked services invoking D-Bus. A local attacker could use this issue to
gain root privileges.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.04
After a standard system update you need to reboot your computer to make
all the necessary changes.