Ubuntu Security Notice USN-608-1
6th May, 2008
kdelibs vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 8.04 LTS
- Ubuntu 7.10
- Ubuntu 7.04
Software description
- kdelibs
Details
It was discovered that start_kdeinit in KDE 3 did not properly sanitize
its input. A local attacker could exploit this to send signals to other
processes and cause a denial of service or possibly execute arbitrary
code. (CVE-2008-1671)
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 8.04 LTS:
- kdelibs4c2a 4:3.5.9-0ubuntu7.1
- Ubuntu 7.10:
- kdelibs4c2a 4:3.5.8-0ubuntu3.4
- Ubuntu 7.04:
- kdelibs4c2a 4:3.5.6-0ubuntu14.3
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
After a standard system upgrade you need to restart your session to effect
the necessary changes.