Sicherheit: Ausführen von Code mit höheren Privilegien in smb4k

Lesezeichen hinzufügen

-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2017-2cc18e2b3b
2017-05-20 03:07:28.221106
-------------------------------------------------------------------------------
-

Name : smb4k
Product : Fedora 25
Version : 1.2.2
Release : 3.fc25
URL : http://smb4k.sourceforge.net/
Summary : The SMB/CIFS Share Browser for KDE
Description :
Smb4K is an SMB/CIFS share browser for KDE. It uses the Samba software suite to
access the SMB/CIFS shares of the local network neighborhood. Its purpose is to
provide a program that's easy to use and has as many features as possible.

-------------------------------------------------------------------------------
-
Update Information:

Security fix for CVE-2017-8849.
https://www.kde.org/info/security/advisory-20170510-2.txt
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1449658 - CVE-2017-8849 smb4k: unauthorized local command
execution as root [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1449658
-------------------------------------------------------------------------------
-

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade smb4k' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org