** Changed in: kde4libs (Ubuntu Precise)
Assignee: (unassigned) = Duchene (denis16ch)
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/1350019
Title:
CVE-2014-5033: kauth
This bug was fixed in the package kde4libs - 4:4.8.5-0ubuntu0.4
---
kde4libs (4:4.8.5-0ubuntu0.4) precise-security; urgency=medium
* SECURITY UPDATE: kauth authentication bypass (LP: #1350019)
- debian/patches/CVE-2014-5033.patch: use dbus system bus name instead
of PID
This bug was fixed in the package kde4libs - 4:4.13.2a-0ubuntu0.3
---
kde4libs (4:4.13.2a-0ubuntu0.3) trusty-security; urgency=medium
* SECURITY UPDATE: kauth authentication bypass (LP: #1350019)
- debian/patches/CVE-2014-5033.patch: use dbus system bus name instead
of
4:4.13.95 already includes the fix.
** Also affects: kde4libs (Ubuntu Precise)
Importance: Undecided
Status: New
** Also affects: kde4libs (Ubuntu Utopic)
Importance: Undecided
Status: New
** Also affects: kde4libs (Ubuntu Trusty)
Importance: Undecided
Status: New
** Patch added: precise debdiff
https://bugs.launchpad.net/ubuntu/utopic/+source/kde4libs/+bug/1350019/+attachment/4166036/+files/kde4libs_4.8.5-0ubuntu0.4.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
I have verified that polkit authentication (changing login manager
settings in system settings) still works with the patch.
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/1350019
Title:
** Patch added: trusty debdiff
https://bugs.launchpad.net/ubuntu/utopic/+source/kde4libs/+bug/1350019/+attachment/4166037/+files/kde4libs_4.13.2a-0ubuntu0.3.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
ACK on the debdiffs. Building now, thanks!
** Changed in: kde4libs (Ubuntu Precise)
Status: New = In Progress
** Changed in: kde4libs (Ubuntu Trusty)
Status: New = In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
I'll work on preparing debdiffs.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1350019
Title:
CVE-2014-5033: kauth authentication bypass
To manage notifications about this bug go to: