[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-15 Thread Launchpad Bug Tracker
This bug was fixed in the package kde4libs - 4:4.14.16-0ubuntu3.3

---
kde4libs (4:4.14.16-0ubuntu3.3) xenial-security; urgency=medium

  * SECURITY UPDATE: Directory traversal vulnerability.
- debian/patches/CVE-2016-6232.patch: extraction location to be in
  subfolder.
- CVE-2016-6232
  * SECURITY UPDATE: malicious .desktop files (and others) would execute
code (LP: #1839432).
- debian/patches/CVE-2019-14744.patch: remove support for $(...) in
  config keys with [$e] marker.
- CVE-2019-14744

 -- Paulo Flabiano Smorigo   Mon, 12 Aug 2019
15:09:56 -0300

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-15 Thread Launchpad Bug Tracker
This bug was fixed in the package kde4libs - 4:4.14.38-0ubuntu6.1

---
kde4libs (4:4.14.38-0ubuntu6.1) disco-security; urgency=medium

  * SECURITY UPDATE: malicious .desktop files (and others) would execute
code (LP: #1839432).
- debian/patches/CVE-2019-14744.patch: remove support for $(...) in
  config keys with [$e] marker.
- debian/patches/kdelibs-4.14.38-openssl-1.1.patch: Make kssl compile
  against OpenSSL 1.1.0
- CVE-2019-14744

 -- Paulo Flabiano Smorigo   Mon, 12 Aug 2019
10:53:32 -0300

** Changed in: kde4libs (Ubuntu Disco)
   Status: New => Fix Released

** Changed in: kde4libs (Ubuntu Xenial)
   Status: New => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2016-6232

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
kubuntu-bugs mailing list
kubuntu-b...@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs


[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-15 Thread Launchpad Bug Tracker
This bug was fixed in the package kde4libs - 4:4.14.38-0ubuntu3.1

---
kde4libs (4:4.14.38-0ubuntu3.1) bionic-security; urgency=medium

  * SECURITY UPDATE: malicious .desktop files (and others) would execute
code (LP: #1839432).
- debian/patches/CVE-2019-14744.patch: remove support for $(...) in
  config keys with [$e] marker.
- CVE-2019-14744

 -- Paulo Flabiano Smorigo   Mon, 12 Aug 2019
12:04:10 -0300

** Changed in: kde4libs (Ubuntu Bionic)
   Status: New => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-15 Thread Launchpad Bug Tracker
This bug was fixed in the package kde4libs - 4:4.14.38-0ubuntu7

---
kde4libs (4:4.14.38-0ubuntu7) eoan; urgency=medium

  * SECURITY UPDATE: malicious .desktop files (and others) would execute
code (LP: #1839432).
- debian/patches/CVE-2019-14744.diff: removes the affected feature as
  currently 'unused'.
- CVE-2019-14744
  * Build against OpenSSL 1.1:
- use Fedora-provided patch backport by Daniel Vrátil and Wolfgang Bauer
- In Build-Depends, replace libssl1.0-dev by "libssl-dev (>= 1.1)"
  * Mark an additional symbol as optional on ppc64el.

 -- Rik Mills   Thu, 15 Aug 2019 14:10:10 +0100

** Changed in: kde4libs (Ubuntu)
   Status: New => Fix Released

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
kubuntu-bugs mailing list
kubuntu-b...@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs


[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-14 Thread Mathew Hodson
** Information type changed from Public to Public Security

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-13 Thread Mathew Hodson
** Changed in: kconfig (Ubuntu)
   Importance: Undecided => Medium

** Changed in: kconfig (Ubuntu Xenial)
   Importance: Undecided => Medium

** Changed in: kconfig (Ubuntu Bionic)
   Importance: Undecided => Medium

** Changed in: kconfig (Ubuntu Disco)
   Importance: Undecided => Medium

** Changed in: kde4libs (Ubuntu)
   Importance: Undecided => Low

** Changed in: kde4libs (Ubuntu Xenial)
   Importance: Undecided => Low

** Changed in: kde4libs (Ubuntu Bionic)
   Importance: Undecided => Low

** Changed in: kde4libs (Ubuntu Disco)
   Importance: Undecided => Low

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-12 Thread Launchpad Bug Tracker
This bug was fixed in the package kconfig - 5.18.0-0ubuntu1.1

---
kconfig (5.18.0-0ubuntu1.1) xenial-security; urgency=medium

  * SECURITY UPDATE: malicious .desktop files (and others) would execute
code (LP: #1839432).
- debian/patches/CVE-2019-14744.diff: removes the affected feature as
  currently 'unused'.
- CVE-2019-14744

 -- Rik Mills   Fri, 09 Aug 2019 08:29:29 +0100

** Changed in: kconfig (Ubuntu Xenial)
   Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-12 Thread Launchpad Bug Tracker
This bug was fixed in the package kconfig - 5.44.0-0ubuntu1.1

---
kconfig (5.44.0-0ubuntu1.1) bionic-security; urgency=medium

  * SECURITY UPDATE: malicious .desktop files (and others) would execute
code (LP: #1839432).
- debian/patches/CVE-2019-14744.diff: removes the affected feature as
  currently 'unused'.
- CVE-2019-14744

 -- Rik Mills   Fri, 09 Aug 2019 08:24:44 +0100

** Changed in: kconfig (Ubuntu Bionic)
   Status: In Progress => Fix Released

** Changed in: kconfig (Ubuntu Disco)
   Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-12 Thread Launchpad Bug Tracker
This bug was fixed in the package kconfig - 5.56.0-0ubuntu1.1

---
kconfig (5.56.0-0ubuntu1.1) disco-security; urgency=medium

  * SECURITY UPDATE: malicious .desktop files (and others) would execute
code (LP: #1839432).
- debian/patches/CVE-2019-14744.diff: removes the affected feature as
  currently 'unused'.
- CVE-2019-14744

 -- Rik Mills   Fri, 09 Aug 2019 08:05:33 +0100

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Steve Beattie
Thanks Rik, I've reviewed your kconfig fixes and uploaded them to the
ubuntu-security-proposed ppa (https://launchpad.net/~ubuntu-security-
proposed/+archive/ubuntu/ppa/) for people to test.


** Changed in: kconfig (Ubuntu Xenial)
   Status: Confirmed => In Progress

** Changed in: kconfig (Ubuntu Bionic)
   Status: Confirmed => In Progress

** Changed in: kconfig (Ubuntu Disco)
   Status: Confirmed => In Progress

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Launchpad Bug Tracker
This bug was fixed in the package kconfig - 5.60.0-0ubuntu2

---
kconfig (5.60.0-0ubuntu2) eoan; urgency=medium

  * SECURITY UPDATE: malicious .desktop files (and others) would execute
code (LP: #1839432).
- debian/patches/CVE-2019-14744.diff: removes the affected feature as
  currently 'unused'.
- CVE-2019-14744

 -- Rik Mills   Thu, 08 Aug 2019 09:13:45 +0100

** Changed in: kconfig (Ubuntu)
   Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Rik Mills
Testing done for Kconfig:

- PPA packages prepared: 
https://launchpad.net/~kubuntu-ppa/+archive/ubuntu/experimental
- Tested on affected releases using the examples reported by the discloser.
- Confirmed that fix negates the vulnerability in those cases.
- Patched systems seem otherwise behave normally. 

** Changed in: kde4libs (Ubuntu)
   Status: Confirmed => New

** Changed in: kde4libs (Ubuntu Xenial)
   Status: Confirmed => New

** Changed in: kde4libs (Ubuntu Bionic)
   Status: Confirmed => New

** Changed in: kde4libs (Ubuntu Disco)
   Status: Confirmed => New

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Rik Mills
kde4libs currently FTBFS in Eoan, so that fix is ongoing. However, this
is much lower priority with little way to trigger the vulnerability on
current KF5 desktops

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
kubuntu-bugs mailing list
kubuntu-b...@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs


[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Ubuntu Foundations Team Bug Bot
** Tags added: patch

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
kubuntu-bugs mailing list
kubuntu-b...@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs


[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Launchpad Bug Tracker
Status changed to 'Confirmed' because the bug affects multiple users.

** Changed in: kde4libs (Ubuntu Xenial)
   Status: New => Confirmed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Launchpad Bug Tracker
Status changed to 'Confirmed' because the bug affects multiple users.

** Changed in: kde4libs (Ubuntu)
   Status: New => Confirmed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Launchpad Bug Tracker
Status changed to 'Confirmed' because the bug affects multiple users.

** Changed in: kde4libs (Ubuntu Disco)
   Status: New => Confirmed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Launchpad Bug Tracker
Status changed to 'Confirmed' because the bug affects multiple users.

** Changed in: kde4libs (Ubuntu Bionic)
   Status: New => Confirmed

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
kubuntu-bugs mailing list
kubuntu-b...@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs


[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Launchpad Bug Tracker
Status changed to 'Confirmed' because the bug affects multiple users.

** Changed in: kconfig (Ubuntu)
   Status: New => Confirmed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Rik Mills
Debdiff with kconfig fix for Xenial archive

** Patch added: "kconfig-xenial-CVE-2019-14744.debdiff"
   
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+attachment/5281760/+files/kconfig-xenial-CVE-2019-14744.debdiff

** Changed in: kconfig (Ubuntu Xenial)
   Status: New => Confirmed

** Changed in: kconfig (Ubuntu Bionic)
   Status: New => Confirmed

** Changed in: kconfig (Ubuntu Disco)
   Status: New => Confirmed

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Rik Mills
Debdiff with fix for Bionic archive

** Patch added: "kconfig-bionic-CVE-2019-14744.debdiff"
   
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+attachment/5281759/+files/kconfig-bionic-CVE-2019-14744.debdiff

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-09 Thread Rik Mills
Debdiff with fix for Disco archive

** Patch added: "kconfig-disco-CVE-2019-14744.debdiff"
   
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+attachment/5281758/+files/kconfig-disco-CVE-2019-14744.debdiff

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-08 Thread Rik Mills
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2019-14744

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
kubuntu-bugs mailing list
kubuntu-b...@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs


[Bug 1839432] Re: [CVE] malicious .desktop files (and others) would execute code

2019-08-08 Thread Rik Mills
** Also affects: kconfig (Ubuntu Bionic)
   Importance: Undecided
   Status: New

** Also affects: kconfig (Ubuntu Disco)
   Importance: Undecided
   Status: New

** Also affects: kconfig (Ubuntu Xenial)
   Importance: Undecided
   Status: New

** Also affects: kde4libs (Ubuntu)
   Importance: Undecided
   Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1839432

Title:
  [CVE] malicious .desktop files (and others) would execute code

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kconfig/+bug/1839432/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs