Login
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in kde-workspace
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in kde-workspace
ID: FEDORA-2014-14813
Distribution: Fedora
Plattformen: Fedora 20
Datum: Sa, 15. November 2014, 12:50
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8651
Applikationen: kde-workspace

Originalnachricht

Name        : kde-workspace
Product : Fedora 20
Version : 4.11.14
Release : 1.fc20
URL : https://projects.kde.org/projects/kde/kde-workspace
Summary : KDE Workspace
Description :
The KDE Workspace consists of what is the desktop of the
KDE Desktop Environment.

This package contains:
* khotkeys (a hotkey daemon)
* klipper (a cut & paste history utility)
* kmenuedit (the menu editor)
* krunner (a command run interface)
* kwin (the window manager of KDE)
* plasma (the KDE desktop, panels and widgets workspace application)
* systemsettings (the configuration editor)

-------------------------------------------------------------------------------
-
Update Information:

New security fix release, privilege escalation issue, see also https://www.kde.org/info/security/advisory-20141106-1.txt
-------------------------------------------------------------------------------
-
ChangeLog:

* Tue Nov 11 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.14-1
- 4.11.14
* Thu Oct 16 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.13-2
- -libs: make kde-style-oxygen dep unversioned
- enable kscreen support for el7
* Sat Oct 11 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.13-1
- 4.11.13
* Tue Sep 16 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.12-1
- 4.11.12
* Fri Aug 22 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.11-4
- Requires: kactivities (unversioned)
* Sat Aug 16 2014 Fedora Release Engineering
<rel-eng@lists.fedoraproject.org> - 4.11.11-3.1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Fri Jul 25 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.11-2.1
- rebuild (f20 against kde-4.13)
* Thu Jul 24 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.11-2
- -libs: drop Requires: kde-workspace
* Sat Jul 12 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.11-1
- 4.11.11
* Sat Jul 5 2014 Kevin Kofler <Kevin@tigcc.ticalc.org> 4.11.10-8
- backport upstream patch to fix choppy fullscreen with OpenGL compositing on
the latest xorg-x11-drv-intel driver from KWin 5 (kde#336589, fdo#80349)
* Thu Jul 3 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.10-7
- QT_PLUGIN_PATH contains repeated paths (#1115268)
* Wed Jul 2 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.10-6
- BuildConflicts: nepomuk-core-devel
* Thu Jun 19 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.10-5
- BR: kdelibs4-webkit-devel
* Wed Jun 11 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.10-4
- revert patch for "Fix ... cut off ... in digital clock"
* Wed Jun 11 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.10-3
- Fix the numbers cut off problem in digital clock applet (kde#228902)
* Sun Jun 8 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.10-2
- respin
* Sat Jun 7 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.10-1
- 4.11.10
* Fri May 2 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.9-4
- backports++ (kdm crasher in particular)
* Thu May 1 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.9-3
- backport some post-4.11.9 upstream commits
* Tue Apr 29 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.9-2
- respin
* Fri Apr 25 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.9-1
- 4.11.9
* Thu Apr 24 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.8-7
- another batch of upstream commits, including final versions of screenlocker
fixes
* Tue Apr 22 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.8-6
- pull in proposed screenlocker fixes (kde#224200, kde#327947, kde#329076)
* Sat Apr 19 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.8-5
- plasma-dataengine-extractor love
- move calendar dataengine to -akonadi subpkg (currently unused)
* Mon Apr 14 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.8-4
- disable nepomuk support (kde-4.13, f21+)
* Mon Apr 14 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.8-3
- startkde.cmake: PAM_KWALLET_LOGIN typo
* Fri Apr 11 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.8-2
- pull in some post 4.11.8 commits
- ... namely adds support for pam-kwallet and XDG_CURRENT_DESKTOP
* Thu Apr 3 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.8-1
- 4.11.8
* Tue Mar 25 2014 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.11.7-6
- bbcukmet: fix processing of weather conditions (regression in -5)
* Mon Mar 24 2014 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.11.7-5
- bbcukmet: fix typo in the condition->icon matching ("clar sky"
-> "clear sky")
- bbcukmet: fix a crash (#1079296/kde#332392) and improve error handling
* Sat Mar 15 2014 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.11.7-4
- apply fixes for kde#330773 (BBC weather no longer working) from bugs.kde.org
* Thu Mar 13 2014 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.11.7-3
- do not mess with XDG_DATA_DIR in startkde, fixes default apps (kde#332107)
- change the startkde patch to a modified copy to prevent more such regressions
* Fri Mar 7 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.11.7-2
- pull in some upstream fixes
- drop f18-related (systemd) hacks
* Fri Feb 28 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.7-1
- 4.11.7
* Wed Feb 26 2014 Lukáš Tinkl <ltinkl@redhat.com> 4.11.6-3
- fix broken suspend/resume with systemd >= 209 (kdebug331403)
* Thu Feb 6 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.6-2
- fix runtime deps (%version vs. %_kde4_version)
* Fri Jan 31 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.11.6-1
- 4.11.6
* Mon Jan 27 2014 Adam Jackson <ajax@redhat.com> 4.11.5-2
- Rebuild for new sonames in libxcb 1.10
* Fri Jan 3 2014 Rex Dieter <rdieter@fedoraproject.org> 4.11.5-1
- 4.11.5
* Tue Dec 31 2013 Rex Dieter <rdieter@fedoraproject.org> 4.11.4-2
- disable session management for screensavers (kde#314859,review#109609))
* Tue Dec 10 2013 Rex Dieter <rdieter@fedoraproject.org> 4.11.4-1
- 4.11.4
* Mon Nov 25 2013 Rex Dieter <rdieter@fedoraproject.org> 4.11.3-5
- followup screenlocker fixes/polish (#1029917, #1032612)
* Sat Nov 23 2013 Rex Dieter <rdieter@fedoraproject.org> - 4.11.3-4
- screenlocker improvements (#1029917, #1032612)
* Sat Nov 16 2013 Rex Dieter <rdieter@fedoraproject.org> - 4.11.3-3
- kdm-themes: fix kde-wallpapers dep (make unversioned)
* Mon Nov 11 2013 Rex Dieter <rdieter@fedoraproject.org> - 4.11.3-2
- include upstream commit for upower-1.0 support
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1163778 - CVE-2014-8651 kde-workspace: arbitrary code execution
and local privilege escalation
https://bugzilla.redhat.com/show_bug.cgi?id=1163778
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update kde-workspace' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung