RedHatRHSA-2019:2141(RHSA-2019:2141) Low: kde-workspace security and bug fix update
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
0.005 Low
EPSS
Percentile
77.1%
The K Desktop Environment (KDE) is a graphical desktop environment for the X Window System. The kdelibs packages include core libraries for the K Desktop Environment.
The kde-workspace packages consist of components providing the KDE graphical desktop environment.
Security Fix(es):
- kde-workspace: Missing sanitization of notifications allows to leak client IP address via IMG element (CVE-2018-6790)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | s390x | kde-workspace-libs | <Β 4.11.19-13.el7 | kde-workspace-libs-4.11.19-13.el7.s390x.rpm |
| RedHat | 7 | ppc64le | kinfocenter | <Β 4.11.19-13.el7 | kinfocenter-4.11.19-13.el7.ppc64le.rpm |
| RedHat | 7 | ppc64 | kde-workspace-libs | <Β 4.11.19-13.el7 | kde-workspace-libs-4.11.19-13.el7.ppc64.rpm |
| RedHat | 7 | s390x | kmenuedit | <Β 4.11.19-13.el7 | kmenuedit-4.11.19-13.el7.s390x.rpm |
| RedHat | 7 | s390 | ksysguard-libs | <Β 4.11.19-13.el7 | ksysguard-libs-4.11.19-13.el7.s390.rpm |
| RedHat | 7 | ppc64 | ksysguardd | <Β 4.11.19-13.el7 | ksysguardd-4.11.19-13.el7.ppc64.rpm |
| RedHat | 7 | s390x | ksysguard-libs | <Β 4.11.19-13.el7 | ksysguard-libs-4.11.19-13.el7.s390x.rpm |
| RedHat | 7 | x86_64 | ksysguardd | <Β 4.11.19-13.el7 | ksysguardd-4.11.19-13.el7.x86_64.rpm |
| RedHat | 7 | ppc64le | virtuoso-opensource-utils | <Β 6.1.6-7.el7 | virtuoso-opensource-utils-6.1.6-7.el7.ppc64le.rpm |
| RedHat | 7 | s390x | ksysguard | <Β 4.11.19-13.el7 | ksysguard-4.11.19-13.el7.s390x.rpm |
Related
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
0.005 Low
EPSS
Percentile
77.1%