This bug was fixed in the package kdebase-workspace - 4:4.2.2-0ubuntu2.1
---------------
kdebase-workspace (4:4.2.2-0ubuntu2.1) jaunty-security; urgency=low
* SECURITY UPDATE: KDM Local Privilege Escalation Vulnerability (LP: #562440).
- Add debian/patches/CVE-2010-0436_fix_kdm_local_exploit.diff
- kdm/backend/ctrl.c: prevent race condition during user login which could
allow execution of arbitrary code as root
- CVE-2010-0436
- http://www.kde.org/info/security/advisory-20100413-1.txt
-- Jonathan Riddell <[email protected]> Fri, 16 Apr 2010 19:16:35 +0100
** Changed in: kdebase-workspace (Ubuntu Intrepid)
Status: Fix Committed => Fix Released
--
[CVE-2010-0436] KDM Local Privilege Escalation Vulnerability
https://bugs.launchpad.net/bugs/562440
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kdebase-workspace in ubuntu.
--
kubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs
