USN-3042-1: KDE-Libs vulnerability
26 July 2016
KDE-Libs could be made to overwrite files.
- kde4libs - KDE 4 core applications and libraries
Andreas Cord-Landwehr discovered that KDE-Libs incorrectly handled
extracting certain archives. If a user were tricked into extracting a
specially-crafted archive, a remote attacker could use this issue to
overwrite arbitrary files out of the extraction directory.
The problem can be corrected by updating your system to the following package versions:
After a standard system update you need to reboot your computer to make
all the necessary changes.
- USN-4100-1: libkdecore5, kde4libs, libkf5configcore5, kconfig