Bug#856321: Fwd: KDE Project Security Advisory: ktnef: Directory Traversal

To: 856321@bugs.debian.org
Subject: Bug#856321: Fwd: KDE Project Security Advisory: ktnef: Directory Traversal
From: Martin Steigerwald <martin@lichtvoll.de>
Date: Mon, 27 Feb 2017 19:52:31 +0100
Message-id: <[🔎] 106322599.ofI8v7Nv0I@merkaba>
Reply-to: Martin Steigerwald <martin@lichtvoll.de>, 856321@bugs.debian.org

Attached is original security advisory. I choose attachment in order to 
preserve the mail headers.

Thanks,
-- 
Martin

--- Begin Message ---

To: kde-announce@kde.org
Subject: KDE Project Security Advisory: ktnef: Directory Traversal
From: Albert Astals Cid <aacid@kde.org>
Date: Mon, 27 Feb 2017 19:13:47 +0100
Message-id: <2051760.0o7XuHtdoY@xps>

KDE Project Security Advisory
=============================

Title:          ktnef: Directory Traversal
Risk Rating:    Medium
CVE:            TBC
Versions:       ktnef <= 5.4.2 (KDE Applications 16.12.2)
Date:           27 February 2017


Overview
========
A directory traversal issue was found in ktnef which can
be exploited by tricking a user into opening a malicious winmail.dat file.
The issue allows to write files with the permission of the user opening
the winmail.dat file during extraction.


Solution
========
Update to ktnef >= 5.4.3 (KDE Applications 16.12.3) (when released)

Or apply the following patch:
https://commits.kde.org/ktnef/4ff38aa15487d69021aacad4b078500f77fb4ae8

Credits
=======
Thanks to X41 D-Sec GmbH for finding the issue and providing us with
files to reproduce it

--- End Message ---

Reply to:

Prev by Date: Bug#856321: ktnef security issue: Directory Traversal
Next by Date: Bug#856275: reopening
Previous by thread: Bug#856321: ktnef security issue: Directory Traversal
Next by thread: Bug#856275: reopening
Index(es):
- Date
- Thread