CVE-2017-8422

Priority
Description
KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain
root privileges by spoofing a callerID and leveraging a privileged helper
app.
Notes
Package
Source: kauth (LP Ubuntu Debian)
Upstream:released (5.34)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (5.18.0-0ubuntu2)
Patches:
Upstream:https://cgit.kde.org/kauth.git/commit/?id=df875f725293af53399f5146362eb158b4f9216a
Package
Upstream:released (4.14.32)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [4:4.13.3-0ubuntu0.5])
Ubuntu 16.04 LTS (Xenial Xerus):released (4:4.14.16-0ubuntu3.2)
Patches:
Upstream:https://commits.kde.org/kdelibs/264e97625abe2e0334f97de17f6ffb52582888ab
More Information

Updated: 2019-12-05 18:49:47 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)