Vulnerability CVE-2010-0436

Vulnerability Name:

CVE-2010-0436 (CCN-57823)

Assigned:

2010-04-13

Published:

2010-04-13

Updated:

2017-09-19

Summary:

Race condition in backend/ctrl.c in KDM in KDE Software Compilation (SC) 2.2.0 through 4.4.2 allows local users to change the permissions of arbitrary files, and consequently gain privileges, by blocking the removal of a certain directory that contains a control socket, related to improper interaction with ksm.

CVSS v3 Severity:

9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

6.9 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C)
5.3 Medium (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:TF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.9 Medium (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C)
5.3 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:TF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (REDHAT CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)
5.2 Medium (REDHAT Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:TF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-362

Vulnerability Consequences:

Gain Privileges

References:

Source: CONFIRM
Type: Patch
ftp://ftp.kde.org/pub/kde/security_patches/kdebase-workspace-4.3.5-CVE-2010-0436.diff

Source: MITRE
Type: CNA
CVE-2010-0436

Source: FEDORA
Type: UNKNOWN
FEDORA-2010-6605

Source: SUSE
Type: UNKNOWN
SUSE-SR:2010:009

Source: CCN
Type: RHSA-2010-0348
Important: kdebase security update

Source: REDHAT
Type: UNKNOWN
RHSA-2010:0348

Source: CCN
Type: SA39393
KDE KDM Socket Race Condition Privilege Escalation

Source: SECUNIA
Type: Vendor Advisory
39419

Source: SECUNIA
Type: UNKNOWN
39481

Source: SECUNIA
Type: UNKNOWN
39506

Source: DEBIAN
Type: UNKNOWN
DSA-2037

Source: DEBIAN
Type: DSA-2037
(kdebase) -- race condition

Source: CCN
Type: KDE Web site
KDE - Latest News

Source: CCN
Type: KDE Security Advisory
KDM Local Privilege Escalation Vulnerability

Source: CONFIRM
Type: Vendor Advisory
http://www.kde.org/info/security/advisory-20100413-1.txt

Source: CCN
Type: OSVDB ID: 63814
KDE KDM backend/ctrl.c Control Socket Race Condition Local Privilege Escalation

Source: BID
Type: UNKNOWN
39467

Source: CCN
Type: BID-39467
KDE KDM Insecure File Permission Local Privilege Escalation Vulnerability

Source: CCN
Type: USN-932-1
KDM vulnerability

Source: VUPEN
Type: Patch, Vendor Advisory
ADV-2010-0879

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.redhat.com/show_bug.cgi?id=570613

Source: XF
Type: UNKNOWN
kde-kdm-privilege-escalation(57823)

Source: XF
Type: UNKNOWN
kde-kdm-privilege-escalation(57823)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:9999

Source: SUSE
Type: SUSE-SR:2010:009
SUSE Security Summary Report

Vulnerable Configuration:

Configuration 1:

cpe:/a:kde:kde_sc:2.2.0:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:3.5.10:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:4.1.2:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:4.2.2:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:4.3.0:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:4.3.1:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:4.3.4:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:4.3.5:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:4.4.0:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:4.4.1:*:*:*:*:*:*:*

OR cpe:/a:kde:kde_sc:4.4.2:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration CCN 1:

cpe:/o:kde:kde:3.0.2:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:2.2.2:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.2.3:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.3.0:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.3.1:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.1.4:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.2.1:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.3.2:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.5.2:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.1.5:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.5:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.5.5:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.5.6:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:4.0.1:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:4.0.2:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:4.0.3:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.5.7:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.5.8:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.5.9:*:*:*:*:*:*:*

OR cpe:/o:kde:kde:3.5.4:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0::x86_64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0::x86-64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:5.0:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.1:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.1:*:*:*:x86_64:*:*:*

OR cpe:/o:mandriva:linux:2010:*:*:*:x86_64:*:*:*

OR cpe:/o:mandriva:linux:2010:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20100436	V	CVE-2010-0436	2022-06-30
oval:org.opensuse.security:def:42333	P	Security update for the Linux Kernel (Important)	2022-02-02
oval:org.opensuse.security:def:112226	P	fileshareset-2.0-73.6 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:31752	P	Security update for MozillaFirefox (Important) (in QA)	2022-01-14
oval:org.opensuse.security:def:32289	P	Security update for libvirt (Important)	2022-01-10
oval:org.opensuse.security:def:32233	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:26178	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:31709	P	Security update for java-1_8_0-openjdk (Important)	2021-11-23
oval:org.opensuse.security:def:31703	P	Security update for MozillaFirefox (Important)	2021-11-17
oval:org.opensuse.security:def:32213	P	Security update for binutils (Moderate)	2021-11-09
oval:org.opensuse.security:def:26155	P	Security update for cairo (Low)	2021-10-22
oval:org.opensuse.security:def:42130	P	Security update for krb5 (Moderate)	2021-10-18
oval:org.opensuse.security:def:105756	P	fileshareset-2.0-73.6 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:31277	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-09-23
oval:org.opensuse.security:def:26132	P	Security update for MozillaFirefox (Important)	2021-09-22
oval:org.opensuse.security:def:32184	P	Security update for openssl (Low)	2021-09-20
oval:org.opensuse.security:def:31255	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-08-25
oval:org.opensuse.security:def:32169	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-08-25
oval:org.opensuse.security:def:29412	P	Security update for openssl (Important)	2021-08-24
oval:org.opensuse.security:def:26106	P	Security update for libmspack (Moderate)	2021-08-17
oval:org.opensuse.security:def:32147	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-07-21
oval:org.opensuse.security:def:31647	P	Security update for libgcrypt (Important)	2021-06-24
oval:org.opensuse.security:def:31645	P	Security update for ovmf (Important)	2021-06-22
oval:org.opensuse.security:def:31203	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:42564	P	kde4-kgreeter-plugins-4.3.5-0.12.18.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:29376	P	Security update for MozillaFirefox (Important)	2021-06-08
oval:org.opensuse.security:def:31192	P	Security update for MozillaFirefox (Important)	2021-06-08
oval:org.opensuse.security:def:36157	P	kde4-kgreeter-plugins-4.3.5-0.12.18.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36425	P	kdebase4-workspace-devel-4.3.5-0.12.18.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:31191	P	Security update for gstreamer-plugins-bad (Important)	2021-06-07
oval:org.opensuse.security:def:32108	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:31623	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:26053	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:26050	P	Security update for python3 (Important)	2021-05-17
oval:org.opensuse.security:def:26048	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:31611	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:32077	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-04-28
oval:org.opensuse.security:def:32059	P	Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:32277	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:26208	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:31347	P	Security update for java-1_8_0-ibm (Important)	2021-02-26
oval:org.opensuse.security:def:33081	P	Security update for postgresql13 (Moderate)	2021-02-22
oval:org.opensuse.security:def:26194	P	Security update for java-1_7_1-ibm (Important)	2021-02-18
oval:org.opensuse.security:def:31624	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:31635	P	Security update for java-1_7_1-ibm (Moderate)	2021-01-04
oval:org.opensuse.security:def:25975	P	Security update for openssl-1_0_0 (Important)	2020-12-09
oval:org.opensuse.security:def:32011	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2020-12-07
oval:org.opensuse.security:def:32003	P	Security update for python-cryptography (Moderate)	2020-12-04
oval:org.opensuse.security:def:35723	P	kde4-kgreeter-plugins-4.3.5-0.10.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:41976	P	kde4-kgreeter-plugins-4.3.5-0.8.35 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35926	P	kde4-kgreeter-plugins-4.3.5-0.12.12.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35569	P	kde4-kgreeter-plugins-4.3.5-0.8.35 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31558	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:25275	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:25324	P	Security update for bcm43xx-firmware (Moderate)	2020-12-01
oval:org.opensuse.security:def:32334	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:32633	P	apache2-mod_jk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32399	P	Security update for unzip (Moderate)	2020-12-01
oval:org.opensuse.security:def:33464	P	Security update for kdm	2020-12-01
oval:org.opensuse.security:def:27954	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:27155	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31405	P	Security update for perl-DBI (Important)	2020-12-01
oval:org.opensuse.security:def:31501	P	Security update for python-pycrypto (Important)	2020-12-01
oval:org.opensuse.security:def:31791	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:32649	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25286	P	Security update for mailman (Important)	2020-12-01
oval:org.opensuse.security:def:25405	P	Security update for spice-gtk (Moderate)	2020-12-01
oval:org.opensuse.security:def:32421	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:32682	P	gzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26534	P	curl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27955	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26385	P	Security update for go (Moderate)	2020-12-01
oval:org.opensuse.security:def:26482	P	Security update for ffmpeg-4 (Low)	2020-12-01
oval:org.opensuse.security:def:31479	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:31857	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:31813	P	Security update for apache2-mod_jk (Moderate)	2020-12-01
oval:org.opensuse.security:def:32688	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25476	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:25350	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25462	P	Security update for squid (Important)	2020-12-01
oval:org.opensuse.security:def:32577	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32721	P	libnewt0_52 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26569	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27966	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26259	P	Security update for openexr (Moderate)	2020-12-01
oval:org.opensuse.security:def:26283	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26424	P	Security update for enigmail (Moderate)	2020-12-01
oval:org.opensuse.security:def:27388	P	dbus-1-glib-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31906	P	Security update for freeradius-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:25477	P	Security update for spectre-meltdown-checker (Moderate)	2020-12-01
oval:org.opensuse.security:def:25478	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:25546	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:25799	P	Security update for gcc48 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32743	P	logrotate on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31037	P	Security update for kdebase4-runtime	2020-12-01
oval:org.opensuse.security:def:28030	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:26316	P	Recommended update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26336	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26438	P	Security update for ansible (Moderate)	2020-12-01
oval:org.opensuse.security:def:27423	P	kdebase4-workspace-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31801	P	security update for xen (Moderate)	2020-12-01
oval:org.opensuse.security:def:31945	P	Security update for gnutls (Important)	2020-12-01
oval:org.opensuse.security:def:32851	P	ecryptfs-utils-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25488	P	Security update for file-roller (Low)	2020-12-01
oval:org.opensuse.security:def:25559	P	Security update for mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:25697	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:25838	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:26688	P	ecryptfs-utils-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31038	P	Security update for kdebase4-workspace (Moderate)	2020-12-01
oval:org.opensuse.security:def:28160	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26400	P	Security update for Chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26653	P	xorg-x11-Xvnc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26750	P	libicu-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31964	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:31760	P	Security update for MozillaFirefox (Critical)	2020-12-01
oval:org.opensuse.security:def:31967	P	Security update for intel-SINIT (Important)	2020-12-01
oval:org.opensuse.security:def:32890	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25706	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:25552	P	Security update for python3-requests (Moderate)	2020-12-01
oval:org.opensuse.security:def:25616	P	Security update for less (Moderate)	2020-12-01
oval:org.opensuse.security:def:25750	P	Security update for flash-player (Moderate)	2020-12-01
oval:org.opensuse.security:def:25852	P	Security update for flash-playerqemu (Important)	2020-12-01
oval:org.opensuse.security:def:26723	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31049	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:28244	P	Security update for libxml2 (Important)	2020-12-01
oval:org.opensuse.security:def:26551	P	fvwm2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26692	P	evince on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31965	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:31841	P	Security update for bzip2 (Important)	2020-12-01
oval:org.opensuse.security:def:31847	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:32443	P	Security update for xen (Moderate)	2020-12-01
oval:org.opensuse.security:def:25707	P	Security update for java-1_7_1-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:25680	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25700	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:25953	P	Security update for gcc48 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25896	P	Security update for gstreamer-0_10-plugins-bad (Moderate)	2020-12-01
oval:org.opensuse.security:def:31123	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:28301	P	Security update for ntfs-3g (Low)	2020-12-01
oval:org.opensuse.security:def:26604	P	libsoup-2_4-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26706	P	ghostscript-fonts-other on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25120	P	Security update for openwsman (Important)	2020-12-01
oval:org.opensuse.security:def:31976	P	Security update for jasper (Moderate)	2020-12-01
oval:org.opensuse.security:def:31933	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:25718	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:25761	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25851	P	Security update for freerdp (Moderate)	2020-12-01
oval:org.opensuse.security:def:25992	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:26890	P	evince on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28385	P	Security update for rubygem-activesupport-3_2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28639	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:28738	P	Security update for libQt	2020-12-01
oval:org.opensuse.security:def:25121	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:32050	P	Security update for kvm (Moderate)	2020-12-01
oval:org.opensuse.security:def:31990	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:33120	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25974	P	Security update for gimp (Moderate)	2020-12-01
oval:org.opensuse.security:def:25782	P	Security update for evolution-data-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:25818	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:25904	P	Security update for gegl (Moderate)	2020-12-01
oval:org.opensuse.security:def:26006	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:26925	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28537	P	Security update for compat-openssl097g	2020-12-01
oval:org.opensuse.security:def:28678	P	Security update for MozillaFirefox, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:32495	P	clamav on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25132	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:32338	P	Security update for sblim-sfcb (Moderate)	2020-12-01
oval:org.opensuse.security:def:32787	P	squidGuard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25910	P	Security update for gstreamer-0_10-plugins-base (Low)	2020-12-01
oval:org.opensuse.security:def:25902	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26252	P	Security update for mariadb-100 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31393	P	Security update for pam_pkcs11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31404	P	Security update for perl-DBI (Important)	2020-12-01
oval:org.opensuse.security:def:28590	P	Security update for libfreebl3	2020-12-01
oval:org.opensuse.security:def:28694	P	Security update for giflib (Moderate)	2020-12-01
oval:org.opensuse.security:def:32534	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25274	P	Security update for djvulibre (Low)	2020-12-01
oval:org.opensuse.security:def:25196	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:32377	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:33425	P	Security update for avahi	2020-12-01
oval:org.opensuse.security:def:25986	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:25991	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:27120	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31394	P	Security update for patch (Important)	2020-12-01
oval:org.opensuse.security:def:31409	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31491	P	Security update for Python	2020-12-01
oval:org.mitre.oval:def:13465	P	DSA-2037-1 kdm (kdebase) -- race condition	2015-02-23
oval:org.mitre.oval:def:7518	P	DSA-2037 kdebase -- race condition	2015-02-23
oval:org.mitre.oval:def:12696	P	USN-932-1 -- kdebase-workspace vulnerability	2014-06-30
oval:org.mitre.oval:def:22459	P	ELSA-2010:0348: kdebase security update (Important)	2014-05-26
oval:org.mitre.oval:def:22179	P	RHSA-2010:0348: kdebase security update (Important)	2014-02-24
oval:org.mitre.oval:def:9999	V	Race condition in backend/ctrl.c in KDM in KDE Software Compilation (SC) 2.2.0 through 4.4.2 allows local users to change the permissions of arbitrary files, and consequently gain privileges, by blocking the removal of a certain directory that contains a control socket, related to improper interaction with ksm.	2013-04-29
oval:org.debian:def:2037	V	race condition	2010-04-17
oval:com.redhat.rhsa:def:20100348	P	RHSA-2010:0348: kdebase security update (Important)	2010-04-14

BACK