Back to search
CVE-2018-10380
Published: May 8, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
kwallet-pam in KDE KWallet before 5.12.6 allows local users to obtain ownership of arbitrary files via a symlink attack.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
DSA-4200
vendor-advisory
x_refsource_DEBIAN
https://commits.kde.org/kwallet-pam/99abc7fde21f40cc6da5feb6ee766cc46fcca1f8
x_refsource_CONFIRM
https://bugzilla.suse.com/show_bug.cgi?id=1090863
x_refsource_CONFIRM
https://commits.kde.org/kwallet-pam/01d4143fda5bddb6dca37b23304dc239a5fb38b5
x_refsource_CONFIRM
https://commits.kde.org/kwallet-pam/802f305d81f8771c4f4a8bd7fd0e368ffc6f9b3b
x_refsource_CONFIRM
https://commits.kde.org/kwallet-pam/2134dec85ce19d6378d03cddfae9e5e464cb24c0
x_refsource_CONFIRM
https://www.kde.org/info/security/advisory-20180503-1.txt
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now