KDE KDM PAM Module PAM_SetCred Privilege Escalation Vulnerability

Solution:
Red Hat has released advisory RHSA-2003:287-01 to address this issue. Please see the attached advisory for details on obtaining and applying fixes.

Red Hat has released advisory RHSA-2003:286-01 to address this issue. Please see the attached advisory for details on obtaining and applying fixes.

Conectiva have released an advisory (CLSA-2003:770) and fixes to address this issue. See referenced advisory for further detail regarding the application of these fixes. Fixes are linked below.

KDE has released a security advisory and patches to address this issue. See referenced advisory for additional information

Red Hat has released advisory RHSA-2003:269-01 to address this issue. Please see the attached advisory for details on obtaining and applying fixes.

Mandrake has released advisories MDKSA-2003:091 and MDKSA-2003:118 to address this issue. See referenced advisories for additional details.

Conectiva has released an advisory CLA-2003:747, including fixes to address this and other issues.

Debian has released an advisory DSA 388-1, including fixes to address this and other issues.

Turbolinux has released an advisory, including fixes to address this and other issues.

Red Hat has released advisory RHSA-2003:270-12 to address this issue in their Linux Enterprise software. Relevant patches are available through the Red Hat Network. See the referenced advisory for additional details.

SGI has released an advisory (20031002-01-U) pertaining to their ProPack Linux distribution. The advisory has been released in response to a number of RHSA advisories, and includes a patch (Patch 10027) containing updated RPM packages relating to 22 different BIDS.

Patch 10027 can be obtained via the following link:
http://support.sgi.com/

For information regarding how to obtain individual RPM packages included in Patch 10027, please see the attached advisory.

Red Hat has released advisories RHSA-2003:288-01 and RHSA-2003:289-07 to address this issue in their Linux Enterprise software. Relevant patches are available through the Red Hat Network. See the referenced advisory for additional details.

SGI has released an advisory (20031101-01-U) pertaining to their ProPack Linux distribution. The advisory has been released in response to a number of RHSA advisories, and includes a patch (Patch 10032) containing updated RPM packages relating to a number of different BIDS.

Patch 10032 can be obtained via the following link:
http://support.sgi.com/

For information regarding how to obtain individual RPM packages included in Patch 10032, please see the attached advisory.

Gentoo has released an advisory that includes fixes for this issue. The following commands can be used to apply fixes:

emerge --sync
emerge '>=kde-base/kde-3.1.4'
emerge clean

Sun has released fixes for Sun Linux.

Debian has released an advisory (DSA 443-1) and fixes to address this issue. See the referenced advisory for fix information.

Fixes:


RedHat XFree86-ISO8859-9-75dpi-fonts-4.2.0-72.i386.rpm

RedHat XFree86-100dpi-fonts-4.0.3-5.i386.rpm

RedHat XFree86-Xnest-4.2.0-72.i386.rpm

RedHat XFree86-base-fonts-4.2.0-8.i386.rpm

RedHat XFree86-ISO8859-9-100dpi-fonts-4.2.0-8.i386.rpm

RedHat XFree86-Xnest-4.1.0-3.i386.rpm

RedHat XFree86-ISO8859-15-75dpi-fonts-4.1.0-3.ia64.rpm

RedHat XFree86-75dpi-fonts-4.1.0-3.i386.rpm

RedHat XFree86-Xnest-4.1.0-3.ia64.rpm

RedHat XFree86-xfs-4.2.0-8.i386.rpm

RedHat XFree86-100dpi-fonts-4.2.0-72.i386.rpm

RedHat XFree86-twm-4.0.3-5.i386.rpm

RedHat XFree86-font-utils-4.2.0-72.i386.rpm

RedHat XFree86-ISO8859-2-75dpi-fonts-4.1.0-3.i386.rpm

RedHat XFree86-Xnest-4.2.0-8.i386.rpm

RedHat XFree86-ISO8859-2-75dpi-fonts-4.2.0-72.i386.rpm

RedHat XFree86-ISO8859-9-75dpi-fonts-2.1.2-16.noarch.rpm

RedHat XFree86-100dpi-fonts-4.1.0-3.ia64.rpm

RedHat XFree86-ISO8859-15-75dpi-fonts-4.1.0-3.i386.rpm

RedHat XFree86-libs-4.1.0-3.i386.rpm

RedHat XFree86-ISO8859-9-100dpi-fonts-4.1.0-3.i386.rpm

RedHat XFree86-libs-4.0.3-5.i386.rpm

RedHat XFree86-Xvfb-4.0.3-5.i386.rpm

RedHat XFree86-xf86cfg-4.1.0-3.i386.rpm

RedHat XFree86-devel-4.1.0-3.i386.rpm

RedHat XFree86-ISO8859-15-100dpi-fonts-4.2.0-72.i386.rpm

RedHat XFree86-xdm-4.1.0-3.ia64.rpm

RedHat XFree86-ISO8859-15-100dpi-fonts-4.1.0-3.i386.rpm

RedHat XFree86-xdm-4.2.0-72.i386.rpm

RedHat XFree86-ISO8859-2-100dpi-fonts-4.2.0-8.i386.rpm

RedHat XFree86-tools-4.2.0-8.i386.rpm

RedHat XFree86-75dpi-fonts-4.1.0-3.ia64.rpm

RedHat XFree86-xfs-4.1.0-3.i386.rpm

RedHat XFree86-4.1.0-3.i386.rpm

RedHat XFree86-devel-4.0.3-5.i386.rpm

RedHat XFree86-4.2.0-72.i386.rpm

RedHat XFree86-ISO8859-2-100dpi-fonts-4.0.3-5.i386.rpm

RedHat XFree86-75dpi-fonts-4.0.3-5.i386.rpm

RedHat XFree86-4.1.0-3.ia64.rpm

RedHat XFree86-75dpi-fonts-4.2.0-8.i386.rpm

RedHat XFree86-twm-4.2.0-8.i386.rpm

RedHat XFree86-xfs-4.2.0-72.i386.rpm

RedHat XFree86-twm-4.1.0-3.i386.rpm

RedHat XFree86-Xvfb-4.1.0-3.ia64.rpm

RedHat XFree86-tools-4.1.0-3.ia64.rpm

RedHat XFree86-cyrillic-fonts-4.2.0-72.i386.rpm

RedHat XFree86-ISO8859-15-100dpi-fonts-4.2.0-8.i386.rpm

RedHat XFree86-tools-4.2.0-72.i386.rpm

RedHat XFree86-xf86cfg-4.2.0-8.i386.rpm

RedHat XFree86-ISO8859-9-100dpi-fonts-4.1.0-3.ia64.rpm

RedHat XFree86-cyrillic-fonts-4.1.0-3.i386.rpm

RedHat XFree86-100dpi-fonts-4.2.0-8.i386.rpm

RedHat XFree86-Mesa-libGL-4.2.0-72.i386.rpm

RedHat XFree86-ISO8859-2-100dpi-fonts-4.1.0-3.ia64.rpm

RedHat XFree86-font-utils-4.2.0-8.i386.rpm

RedHat XFree86-ISO8859-9-100dpi-fonts-2.1.2-16.noarch.rpm

RedHat XFree86-ISO8859-9-75dpi-fonts-4.1.0-3.ia64.rpm

RedHat XFree86-tools-4.0.3-5.i386.rpm

RedHat XFree86-twm-4.1.0-3.ia64.rpm

KDE KDE 2.2.2

KDE KDE 3.0.5

KDE KDE 3.1

KDE KDE 3.1.2


 

Privacy Statement
Copyright 2010, SecurityFocus