Oval Definition:oval:com.redhat.rhsa:def:20171264
Revision Date:2017-05-22Version:635
Title:RHSA-2017:1264: kdelibs security update (Important)
Description:The K Desktop Environment (KDE) is a graphical desktop environment for the X Window System. The kdelibs packages include core libraries for the K Desktop Environment.

Security Fix(es):

  • A privilege escalation flaw was found in the way kdelibs handled D-Bus messages. A local user could potentially use this flaw to gain root privileges by spoofing a callerID and leveraging a privileged helper application. (CVE-2017-8422)

    Red Hat would like to thank Sebastian Krahmer (SUSE) for reporting this issue.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2017-8422
    RHSA-2017:1264
    RHSA-2017:1264-00
    RHSA-2017:1264-01
    Platform(s):Red Hat Enterprise Linux 7
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • kdelibs is earlier than 6:4.14.8-6.el7_3
  • AND kdelibs is signed with Red Hat redhatrelease2 key
  • kdelibs-apidocs is earlier than 6:4.14.8-6.el7_3
  • AND kdelibs-apidocs is signed with Red Hat redhatrelease2 key
  • kdelibs-common is earlier than 6:4.14.8-6.el7_3
  • AND kdelibs-common is signed with Red Hat redhatrelease2 key
  • kdelibs-devel is earlier than 6:4.14.8-6.el7_3
  • AND kdelibs-devel is signed with Red Hat redhatrelease2 key
  • kdelibs-ktexteditor is earlier than 6:4.14.8-6.el7_3
  • AND kdelibs-ktexteditor is signed with Red Hat redhatrelease2 key
  • BACK