Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Tue, 16 Jul 2013 11:49:57 -0400 (EDT)
From: Jan Lieskovsky <>
Cc: "Steven M. Christey" <>
Subject: CVE Request -- kde-workspace 4.10.5 fixing two security flaws

Hello Kurt, Steve, vendors,

  while not listed in the announcement:

looks like kde-workspace v4.10.5 fixed two security flaws
(the second one a minor one):

* Issue #1 - Possible NULL pointer dereference in KDM and KCheckPass
             when glibc 2.17 (eglibc 2.17) or FIPS enabled system used
             Relevant patches:

* Issue #2 - Plasma desktop is leaking memory in X if some system tray icon is blinking
             Relevant patch:

Could you allocate CVE ids for these?

Thank you && Regards, Jan.
Jan iankko Lieskovsky / Red Hat Security Response Team

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.