FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
2f90556f-18c6-11e4-9cc4-5453ed2e2b49kdelibs -- KAuth PID Reuse Flaw

Martin Sandsmark reports:

The KAuth framework uses polkit-1 API which tries to authenticate using the requestors PID. This is prone to PID reuse race conditions.

This potentially allows a malicious application to pose as another for authentication purposes when executing privileged actions.


Discovery 2014-07-30
Entry 2014-07-31
kdelibs
< 4.12.5_3

CVE-2014-5033
http://lists.kde.org/?l=kde-announce&m=140674898412923&w=2