 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.59371 |
| Category: | Fedora Local Security Checks |
| Title: | Fedora Core 5 FEDORA-2006-942 (kdebase) |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing an update to kdebase announced via advisory FEDORA-2006-942. Core applications for the K Desktop Environment. Included are: kdm (replacement for xdm), kwin (window manager), konqueror (filemanager, web browser, ftp client, ...), konsole (xterm replacement), kpanel (application starter and desktop pager), kaudio (audio server), kdehelp (viewer for kde help files, info and man pages), kthememgr (system for managing alternate theme packages) plus other KDE components (kcheckpass, kikbd, kscreensaver, kcontrol, kfind, kfontmanager, kmenuedit). Update Information: fix #201507, CVE-2006-3742 second login attempt by validated user bypasses login passwords * Mon Aug 28 2006 Than Ngo 6:3.5.4-0.4.fc5 - fix broken deps for s390(x) * Fri Aug 25 2006 Than Ngo 6:3.5.4-0.3.fc5 - fix #203221, konsole does not display bold characters - fix #203083, correct htdig settings - fix #201507, pam config issue - fix #203279, Antialiasing issue - apply upstream patch to fix argument quoting - add requires: eject - fix kdm crash * Fri Aug 11 2006 Than Ngo 6:3.5.4-0.2.fc5 - fix BR * Thu Aug 10 2006 Than Ngo 6:3.5.4-0.1.fc5 - 3.5.4 * Thu Jul 6 2006 Than Ngo 6:3.5.3-0.4.fc5 - fix #187228, kio_media_mounthelper fails with fuser - fix #197778, add missing env.sh script - apply upstream patches * Thu Jun 15 2006 Than Ngo 6:3.5.3-0.3.fc5 - fix BR * Wed Jun 14 2006 Than Ngo 6:3.5.3-0.2.fc5 - apply patch to to fix #194659, CVE-2006-2449 KDM symlink attack vulnerability thanks to KDE security team * Thu Jun 8 2006 Than Ngo 6:3.5.3-0.1.fc5 - update to 3.5.3 * Fri May 12 2006 Than Ngo 6:3.5.2-0.5.fc5 - fix 190836, xmTextFieldClass widgets don't work properly - fix 186425, KDE Terminal Sessions applet does not display konsole bookmarks - fix 153202, startkde gets wrong field from space_tmp/space_home with finnish - fix 191049, KDE screensaver calls PAM incorrectly - fix 191306, Kde Help Center can't build an index - fix 192832, konsole crashes on kde logout Solution: Apply the appropriate updates. This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2006-942 Risk factor : Critical CVSS Score: 10.0 |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2006-3742 FEDORA-2006-942 http://lwn.net/Alerts/197302/ Common Vulnerability Exposure (CVE) ID: CVE-2006-2449 1016297 http://securitytracker.com/id?1016297 18431 http://www.securityfocus.com/bid/18431 20060614 [KDE Security Advisory] KDM symlink attack vulnerability http://www.securityfocus.com/archive/1/437133/100/0/threaded 20060615 rPSA-2006-0106-1 kdebase http://www.securityfocus.com/archive/1/437322/100/0/threaded 20602 http://secunia.com/advisories/20602 20660 http://secunia.com/advisories/20660 20674 http://secunia.com/advisories/20674 20702 http://secunia.com/advisories/20702 20785 http://secunia.com/advisories/20785 20869 http://secunia.com/advisories/20869 20890 http://secunia.com/advisories/20890 21662 http://secunia.com/advisories/21662 26511 http://www.osvdb.org/26511 ADV-2006-2355 http://www.vupen.com/english/advisories/2006/2355 DSA-1156 http://www.debian.org/security/2006/dsa-1156 GLSA-200606-23 http://www.gentoo.org/security/en/glsa/glsa-200606-23.xml MDKSA-2006:105 http://www.mandriva.com/security/advisories?name=MDKSA-2006:105 MDKSA-2006:106 http://www.mandriva.com/security/advisories?name=MDKSA-2006:106 RHSA-2006:0548 http://www.redhat.com/support/errata/RHSA-2006-0548.html SSA:2006-178-01 http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.444467 SUSE-SA:2006:039 http://www.novell.com/linux/security/advisories/2006_39_kdm.html USN-301-1 https://usn.ubuntu.com/301-1/ http://www.kde.org/info/security/advisory-20060614-1.txt kde-kdm-symlink(27181) https://exchange.xforce.ibmcloud.com/vulnerabilities/27181 oval:org.mitre.oval:def:9844 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9844 |
| Copyright | Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |