https://bugs.kde.org/show_bug.cgi?id=466786
--- Comment #26 from Harald Sitter <sit...@kde.org> --- This call here https://invent.kde.org/network/kdenetwork-filesharing/-/blob/master/samba/filepropertiesplugin/groupmanager.cpp#L120 may be made by any application that has access to the bus. They may request becoming member of any group because of how the function works. The only thing standing between a malicious application making this request to push the user into the wheel group or root group or admin group and then exploit the access that comes with that is the group filtering. -- You are receiving this mail because: You are watching all bug changes.