USN-150-1: KDE library vulnerability

21 July 2005

kdelibs vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 5.04

Software Description

Details

Kate and Kwrite create a backup file before saving a modified file. These backup files were created with default permissions, even if the original file had more strict permissions set, so that other local users could possibly read the backup file even if they are not permitted to read the original file.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 5.04
kdelibs4

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

References