CVE-2008-1671
Publication date 28 April 2008
Last updated 24 July 2024
Ubuntu priority
start_kdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via “user-influenceable input” (probably command-line arguments) that cause start_kdeinit to send SIGUSR1 signals to other processes.
Status
Package | Ubuntu Release | Status |
---|---|---|
kdelibs | 8.04 LTS hardy |
Fixed 4:3.5.9-0ubuntu7.1
|
7.10 gutsy |
Fixed 4:3.5.8-0ubuntu3.4
|
|
7.04 feisty |
Fixed 4:3.5.6-0ubuntu14.3
|
|
6.06 LTS dapper |
Not affected
|