|
Family: Debian Local Security Checks --> Category: infos
[DSA1156] DSA-1156-1 kdebase Vulnerability Scan
Vulnerability Scan Summary DSA-1156-1 kdebase
Detailed Explanation for this Vulnerability Test
Ludwig Nussel discovered that kdm, the X display manager for KDE, handles
access to the session type configuration file insecurely, which may lead
to the disclosure of arbitrary files through a symlink attack.
For the stable distribution (sarge) this problem has been fixed in
version 3.3.2-1sarge3.
For the unstable distribution (sid) this problem has been fixed in
version 3.5.2-2.
We recommend that you upgrade your kdm package.
Solution : http://www.debian.org/security/2006/dsa-1156
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|