Bug#374002: kdm: [CVE-2006-2449] KDM symlink attack vulnerability

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#374002: kdm: [CVE-2006-2449] KDM symlink attack vulnerability
From: Stefan Fritsch <sf@sfritsch.de>
Date: Fri, 16 Jun 2006 20:26:07 +0200
Message-id: <[🔎] 20060616182607.13392.56996.reportbug@k.lan>
Reply-to: Stefan Fritsch <sf@sfritsch.de>, 374002@bugs.debian.org

Package: kdm
Version: 4:3.5.3-2
Severity: grave
Tags: security patch
Justification: user security hole

KDM allows the user to select the session type for login. This
setting is permanently stored in the user home directory. By
using a symlink attack, KDM can be tricked into allowing the
user to read file content that would otherwise be unreadable
to this particular user.

See http://www.kde.org/info/security/advisory-20060614-1.txt
(includes patch)

Please mention the CVE-id in the changelog.

Reply to:

Follow-Ups:
- Bug#374002: kdm: [CVE-2006-2449] KDM symlink attack vulnerability
  - From: Pierre Habouzit <pierre.habouzit@m4x.org>

Prev by Date: Bug#374003: CVE-2006-2916: artswrapper setuid() return value checking vulnerability
Next by Date: Bug#374003: CVE-2006-2916: artswrapper setuid() return value checking vulnerability
Previous by thread: Processed: Re: Bug#374003: CVE-2006-2916: artswrapper setuid() return value checking vulnerability
Next by thread: Bug#374002: kdm: [CVE-2006-2449] KDM symlink attack vulnerability
Index(es):
- Date
- Thread