[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#319016: Information leak through insufficient permissions on backup files in kate (CAN-2005-1920)

Package: kate
Severity: important
Tags: security

Kate creates backup files with default permissions, which may cause
sensitive information to be visible to other users on the system.
Please see http://www.kde.org/info/security/advisory-20050718-1.txt
for full details.

stable, testing and sid are affected, oldstable is not.
It's been fixed in the 3.4.1 packages in experimental.

Cheers,
         Moritz

-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.4.29-vs1.2.10
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)

Versions of packages kate depends on:
pn  kdebase-libs                             Not found.
pn  kdelibs3                                 Not found.
ii  libc6                  2.3.2.ds1-22      GNU C Library: Shared libraries an
ii  libfam0c102 [libfam0]  2.7.0-6           client library to control the FAM 
ii  libjpeg62              6b-10             The Independent JPEG Group's JPEG 
pn  libpng2                                  Not found.
pn  libqt2                                   Not found.
ii  libstdc++2.10-glibc2.2 1:2.95.4-22       The GNU stdc++ library
pn  xlibs                                    Not found.
ii  zlib1g                 1:1.2.2-4.sarge.1 compression library - runtime
Reply to: