First published: Mon Apr 28 2008(Updated: )
start_kdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" (probably command-line arguments) that cause start_kdeinit to send SIGUSR1 signals to other processes.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
KDE KDE | =3.5.5 | |
KDE KDE | =3.5.7 | |
KDE KDE | =3.5.8 | |
KDE KDE | =3.5.9 | |
KDE KDE | =3.5.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.