CVE-2014-5033: kauth authentication bypass
Bug #1350019 reported by
Felix Geyer
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kde4libs (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Precise |
Fix Released
|
Undecided
|
Duchene | ||
Trusty |
Fix Released
|
Undecided
|
Unassigned | ||
Utopic |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
In kauth:
Using the PID for authentication is prone to a PID reuse race condition, and a security issue.
https:/
http://
CVE References
Changed in kde4libs (Ubuntu Precise): | |
assignee: | nobody → Duchene (denis16ch) |
To post a comment you must log in.
I'll work on preparing debdiffs.