Ubuntu
kauth package

[CVE] Insecure handling of arguments in helpers

Bug #1815427 reported by Rik Mills
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
kauth (Ubuntu)
Fix Released
Undecided
Unassigned
Bionic
New
Undecided
Unassigned
Cosmic
New
Undecided
Unassigned
Disco
Fix Released
Undecided
Unassigned

Bug Description

KDE Project Security Advisory
=============================

Title: kauth: Insecure handling of arguments in helpers
Risk Rating: Medium
CVE: CVE-2019-7443
Versions: KDE Frameworks < 5.55.0
Date: 9 February 2019

Overview
========
KAuth allows to pass parameters with arbitrary types to helpers running as root
over DBus. Certain types can cause crashes and trigger decoding arbitrary
images with dynamically loaded plugins.

Solution
========
Update to kauth >= 5.55.0

Or apply the following patch to kauth:
https://cgit.kde.org/kauth.git/commit/?id=fc70fb0161c1b9144d26389434d34dd135cd3f4a

Credits
=======

Thanks to Fabian Vogt for the report and Albert Astals Cid for the fix.

Debian advisory: https://security-tracker.debian.org/tracker/CVE-2019-7443

CVE References

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package kauth - 5.54.0-2ubuntu1

---------------
kauth (5.54.0-2ubuntu1) disco; urgency=medium

  * Merge from Debian Unstable. Remaining changes:
    - Kubuntu Vcs fields.
    - Breaks/Replaces to suit Kubuntu version history.
    - Correct errors in long description for libkf5auth-dev-bin
    - Pass -fno-keep-inline-functions to GCC for the acc test.
    - Keep our symbols file.
   * Fixes CVE-2019-7443 (LP: #1815427)

 -- Rik Mills <email address hidden> Mon, 11 Feb 2019 10:04:00 +0000

Changed in kauth (Ubuntu Disco):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.