7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.173 Low
EPSS
Percentile
96.1%
CentOS Errata and Security Advisory CESA-2006:0184
kdelibs contains libraries for the K Desktop Environment (KDE).
A heap overflow flaw was discovered affecting kjs, the JavaScript
interpreter engine used by Konqueror and other parts of KDE. An attacker
could create a malicious web site containing carefully crafted JavaScript
code that would trigger this flaw and possibly lead to arbitrary code
execution. The Common Vulnerabilities and Exposures project assigned the
name CVE-2006-0019 to this issue.
NOTE: this issue does not affect KDE in Red Hat Enterprise Linux 3 or 2.1.
Users of KDE should upgrade to these updated packages, which contain a
backported patch from the KDE security team correcting this issue as well
as two bug fixes.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2006-January/074749.html
https://lists.centos.org/pipermail/centos-announce/2006-January/074750.html
https://lists.centos.org/pipermail/centos-announce/2006-January/074758.html
https://lists.centos.org/pipermail/centos-announce/2006-January/074759.html
https://lists.centos.org/pipermail/centos-announce/2006-January/074761.html
Affected packages:
kdelibs
kdelibs-devel
Upstream details at:
https://access.redhat.com/errata/RHSA-2006:0184
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 4 | i386 | kdelibs | < 3.3.1-3.14 | kdelibs-3.3.1-3.14.i386.rpm |
CentOS | 4 | i386 | kdelibs-devel | < 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.i386.rpm |
CentOS | 4 | i386 | kdelibs | < 3.3.1-3.14 | kdelibs-3.3.1-3.14.i386.rpm |
CentOS | 4 | x86_64 | kdelibs | < 3.3.1-3.14 | kdelibs-3.3.1-3.14.x86_64.rpm |
CentOS | 4 | x86_64 | kdelibs-devel | < 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.x86_64.rpm |
CentOS | 4 | ia64 | kdelibs | < 3.3.1-3.14 | kdelibs-3.3.1-3.14.ia64.rpm |
CentOS | 4 | ia64 | kdelibs-devel | < 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.ia64.rpm |
CentOS | 4 | alpha | kdelibs | < 3.3.1-3.14 | kdelibs-3.3.1-3.14.alpha.rpm |
CentOS | 4 | alpha | kdelibs-devel | < 3.3.1-3.14 | kdelibs-devel-3.3.1-3.14.alpha.rpm |
CentOS | 4 | s390 | kdelibs | < 3.3.1-3.14 | kdelibs-3.3.1-3.14.s390.rpm |