Register | Log in

kde4libs

Choose email to subscribe with

general

source: kde4libs (main)
version: 4:4.14.38-3
maintainer: Debian/Kubuntu Qt/KDE Maintainers (archive) (DMD)
uploaders: Lisandro Damián Nicanor Pérez Meyer [DMD] – Sune Vuorela [DMD] – George Kiagiadakis [DMD] – Modestas Vainius [DMD] – Maximiliano Curia [DMD] – Diane Trout [DMD]
arch: all any
std-ver: 4.1.5
VCS: Git (Browse)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 4:4.14.2-5+deb8u2
o-o-sec: 4:4.14.2-5+deb8u3
oldstable: 4:4.14.26-2
stable: 4:4.14.38-3

versioned links

4:4.14.2-5+deb8u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4:4.14.2-5+deb8u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4:4.14.26-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4:4.14.38-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

package is gone

This package is not in any development repository. This probably means that the package has been removed (or has been renamed). Thus the information here is of little interest ... the package is going to disappear unless someone takes it over and reintroduces it.

action needed

2 ignored security issues in buster low

There are 2 open security issues in buster.

2 issues skipped by the security teams:

CVE-2019-14744: In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling of .desktop and .directory files, as demonstrated by a shell command on an Icon line in a .desktop file.
CVE-2019-7443: KDE KAuth before 5.55 allows the passing of parameters with arbitrary types to helpers running as root over DBus via DBusHelperProxy.cpp. Certain types can cause crashes, and trigger the decoding of arbitrary images with dynamically loaded plugins. In other words, KAuth unintentionally causes this plugin code to run as root, which increases the severity of any possible exploitation of a plugin vulnerability.

Please fix them.

Created: 2019-02-15 Last update: 2020-01-16 12:35

1 ignored security issue in jessie low

There is 1 open security issue in jessie.

1 issue skipped by the security teams:

CVE-2019-7443: KDE KAuth before 5.55 allows the passing of parameters with arbitrary types to helpers running as root over DBus via DBusHelperProxy.cpp. Certain types can cause crashes, and trigger the decoding of arbitrary images with dynamically loaded plugins. In other words, KAuth unintentionally causes this plugin code to run as root, which increases the severity of any possible exploitation of a plugin vulnerability.

Please fix it.

Created: 2019-02-15 Last update: 2020-01-16 12:35

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2019-14744: In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling of .desktop and .directory files, as demonstrated by a shell command on an Icon line in a .desktop file.
CVE-2019-7443: KDE KAuth before 5.55 allows the passing of parameters with arbitrary types to helpers running as root over DBus via DBusHelperProxy.cpp. Certain types can cause crashes, and trigger the decoding of arbitrary images with dynamically loaded plugins. In other words, KAuth unintentionally causes this plugin code to run as root, which increases the severity of any possible exploitation of a plugin vulnerability.

Please fix them.

Created: 2019-02-15 Last update: 2020-01-16 12:35

news

[2019-09-01] kde4libs REMOVED from testing (Debian testing watch)
[2019-08-25] Removed 4:4.14.38-4 from unstable (Debian FTP Masters)
[2019-08-18] Accepted kde4libs 4:4.14.2-5+deb8u3 (source amd64 all) into oldoldstable (Markus Koschany)
[2019-08-16] kde4libs 4:4.14.38-4 MIGRATED to testing (Debian testing watch)
[2019-08-10] Accepted kde4libs 4:4.14.38-4 (source) into unstable (Maximiliano Curia)
[2019-01-23] Accepted kde4libs 4:4.14.38-4~exp1 (source amd64 all) into experimental (Scott Kitterman) (signed by: Donald Scott Kitterman)
[2018-12-17] kde4libs 4:4.14.38-3 MIGRATED to testing (Debian testing watch)
[2018-12-06] Accepted kde4libs 4:4.14.38-3 (source) into unstable (Didier Raboud)
[2018-10-09] kde4libs 4:4.14.38-2 MIGRATED to testing (Debian testing watch)
[2018-07-28] Accepted kde4libs 4:4.14.38-2 (source) into unstable (Pino Toscano)
[2018-07-19] kde4libs 4:4.14.38-1 MIGRATED to testing (Debian testing watch)
[2018-07-14] Accepted kde4libs 4:4.14.38-1 (source) into unstable (Pino Toscano)
[2017-10-06] kde4libs 4:4.14.36-1 MIGRATED to testing (Debian testing watch)
[2017-10-01] Accepted kde4libs 4:4.14.36-1 (source) into unstable (Pino Toscano)
[2017-08-31] kde4libs 4:4.14.35-1 MIGRATED to testing (Debian testing watch)
[2017-08-26] Accepted kde4libs 4:4.14.35-1 (source) into unstable (Pino Toscano)
[2017-05-27] Accepted kde4libs 4:4.14.2-5+deb8u2 (all source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2017-05-25] Accepted kde4libs 4:4.8.4-4+deb7u3 (source amd64 all) into oldstable (Emilio Pozuelo Monfort)
[2017-05-16] kde4libs 4:4.14.26-2 MIGRATED to testing (Debian testing watch)
[2017-05-10] Accepted kde4libs 4:4.14.26-2 (source) into unstable (Maximiliano Curia)
[2016-11-29] kde4libs 4:4.14.26-1 MIGRATED to testing (Debian testing watch)
[2016-11-23] Accepted kde4libs 4:4.14.26-1 (source) into unstable (Maximiliano Curia)
[2016-10-24] kde4libs 4:4.14.25-1 MIGRATED to testing (Debian testing watch)
[2016-10-17] Accepted kde4libs 4:4.14.25-1 (source) into unstable (Maximiliano Curia)
[2016-08-24] kde4libs 4:4.14.23-1 MIGRATED to testing (Debian testing watch)
[2016-08-18] Accepted kde4libs 4:4.14.23-1 (source) into unstable (Pino Toscano)
[2016-08-17] Accepted kde4libs 4:4.14.22-3 (source) into unstable (Pino Toscano)
[2016-08-16] Accepted kde4libs 4:4.14.2-5+deb8u1 (all source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2016-08-08] kde4libs 4:4.14.22-2 MIGRATED to testing (Debian testing watch)
[2016-08-01] Accepted kde4libs 4:4.14.22-2 (source) into unstable (Maximiliano Curia)

1
2

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
buildd: logs, clang, cross
popcon
browse source code
edit tags
security tracker

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing