CVE-2010-0436
Publication date 15 April 2010
Last updated 24 July 2024
Ubuntu priority
Race condition in backend/ctrl.c in KDM in KDE Software Compilation (SC) 2.2.0 through 4.4.2 allows local users to change the permissions of arbitrary files, and consequently gain privileges, by blocking the removal of a certain directory that contains a control socket, related to improper interaction with ksm.
Status
Package | Ubuntu Release | Status |
---|---|---|
kdebase | 9.10 karmic |
Not affected
|
9.04 jaunty |
Not affected
|
|
8.10 intrepid |
Not affected
|
|
8.04 LTS hardy | Ignored end of life | |
6.06 LTS dapper | Ignored end of life | |
kdebase-workspace | 9.10 karmic |
Fixed 4:4.3.2-0ubuntu7.2
|
9.04 jaunty |
Fixed 4:4.2.2-0ubuntu2.1
|
|
8.10 intrepid |
Fixed 4:4.1.4-0ubuntu1~intrepid3.2
|
|
8.04 LTS hardy | Ignored end of life | |
6.06 LTS dapper | Not in release |
Patch details
Package | Patch details |
---|---|
kdebase-workspace |
References
Related Ubuntu Security Notices (USN)
- USN-932-1
- KDM vulnerability
- 19 April 2010