Language Selection

English French German Italian Portuguese Spanish

KDE KDM Vulnerability Elevation of Privilage

Filed under

Sebastian Krahmer from the SUSE Security team has found a vulnerability in KDM which will allow a local user to elevate their privileges to root access. You can see more about vulnerability and install the fix below, although I expect all distributions to already have the fix applied, or to have it applied very shortly.

1. Systems affected:
KDM as shipped with KDE SC 2.2.0 up to including KDE SC 4.4.2

2. Overview:
KDM contains a race condition that allows local attackers to
make arbitrary files on the system world-writeable. This can
happen while KDM tries to create its control socket during
user login. This vulnerability has been discovered by
Sebastian Krahmer from the SUSE Security Team.

3. Impact:

More in Tux Machines

Release of KDE Frameworks 5.15.0

KDE Frameworks are 60 addon libraries to Qt which provide a wide variety of commonly needed functionality in mature, peer reviewed and well tested libraries with friendly licensing terms. For an introduction see the Frameworks 5.0 release announcement. This release is part of a series of planned monthly releases making improvements available to developers in a quick and predictable manner. Read more

The Best Linux Setup For Older Computers

A number of the distributions on that list would have been suitable but I was also looking for a distribution that had a 32-bit version. From the list I could reasonably have gone for PCLinuxOS, Linux Mint XFCE, Zorin OS Lite or Linux Lite but having recently reviewed Q4OS I decided that this was the best option because it looks a lot like older versions of Windows, it is lightweight, fast and easy to use. Read more

Rugged Cat S40 Android Smartphone Launches in U.S.

The Cat S40 rugged smartphone, built to take abuse in extreme environmental conditions in the workplace or daily life, is now available in the United States. The new Android phone, which runs on GSM networks, such as T-Mobile and AT&T Wireless, sells for $399, according to an Oct. 7 announcement by Bullitt Mobile, which licenses the Caterpillar name for the device. Read more

Manjaro Linux Fluxbox 15.10 Edition Released with a Completely Redesigned Desktop

A few minutes ago, October 10, the Manjaro Community Team, through Bernhard Landauer, was proud to announce the release and immediate availability for download of the Manjaro Linux Fluxbox 15.10 operating system. Read more