Search for packages
Package details: pkg:deb/debian/kde4libs@4:4.4.5-2%2Bsqueeze4
purl pkg:deb/debian/kde4libs@4:4.4.5-2%2Bsqueeze4
Next non-vulnerable version 4:4.14.26-2
Latest non-vulnerable version 4:4.14.26-2
Risk 10.0
Vulnerabilities affecting this package (10)
Vulnerability Summary Fixed by
VCID-2gzz-6rpz-aaag
Aliases:
CVE-2011-1094
kio/kio/tcpslavebase.cpp in KDE KSSL in kdelibs before 4.6.1 does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a certificate issued by a legitimate Certification Authority for an IP address, a different vulnerability than CVE-2009-2702.
4:4.8.4-4+deb7u1
Affected by 6 other vulnerabilities.
VCID-9243-ckwg-aaap
Aliases:
CVE-2017-6410
kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL function with a full https URL (potentially including Basic Authentication credentials, a query string, or PATH_INFO), which allows remote attackers to obtain sensitive information via a crafted PAC file.
4:4.14.2-5+deb8u2
Affected by 3 other vulnerabilities.
4:4.14.26-2
Affected by 0 other vulnerabilities.
VCID-99ws-y1uc-aaar
Aliases:
CVE-2010-3170
Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 recognize a wildcard IP address in the subject's Common Name field of an X.509 certificate, which might allow man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.
4:4.8.4-4+deb7u1
Affected by 6 other vulnerabilities.
VCID-faq9-s2nc-aaae
Aliases:
CVE-2011-1168
Cross-site scripting (XSS) vulnerability in the KHTMLPart::htmlError function in khtml/khtml_part.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable web site.
4:4.8.4-4+deb7u1
Affected by 6 other vulnerabilities.
VCID-g6rw-9kg2-aaad
Aliases:
CVE-2014-5033
KDE kdelibs before 4.14 and kauth before 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, related to CVE-2013-4288 and "PID reuse race conditions."
4:4.8.4-4+deb7u1
Affected by 6 other vulnerabilities.
4:4.14.2-5
Affected by 3 other vulnerabilities.
VCID-het3-uz92-aaah
Aliases:
CVE-2016-6232
Directory traversal vulnerability in KArchive before 5.24, as used in KDE Frameworks, allows remote attackers to write to arbitrary files via a ../ (dot dot slash) in a filename in an archive file, related to KNewsstuff downloads.
4:4.14.2-5+deb8u2
Affected by 3 other vulnerabilities.
4:4.14.26-2
Affected by 0 other vulnerabilities.
VCID-p5qf-n6du-aaaf
Aliases:
CVE-2014-3494
kio/usernotificationhandler.cpp in the POP3 kioslave in kdelibs 4.10.95 before 4.13.3 does not properly generate warning notifications, which allows man-in-the-middle attackers to obtain sensitive information via an invalid certificate.
4:4.14.2-5
Affected by 3 other vulnerabilities.
VCID-sygv-yxwa-aaac
Aliases:
CVE-2013-2074
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
4:4.14.2-5
Affected by 3 other vulnerabilities.
VCID-wgs9-r7h8-aaaa
Aliases:
CVE-2011-3365
The KDE SSL Wrapper (KSSL) API in KDE SC 4.6.0 through 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote attackers to spoof the common name (CN) of a certificate via rich text.
4:4.8.4-4+deb7u1
Affected by 6 other vulnerabilities.
VCID-yg6r-axzc-aaar
Aliases:
CVE-2017-8422
KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app.
4:4.14.2-5+deb8u2
Affected by 3 other vulnerabilities.
4:4.14.26-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T17:41:15.230701+00:00 Debian Oval Importer Affected by VCID-2gzz-6rpz-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T17:10:19.596047+00:00 Debian Oval Importer Affected by VCID-faq9-s2nc-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:42:38.210699+00:00 Debian Oval Importer Affected by VCID-g6rw-9kg2-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:33:08.162632+00:00 Debian Oval Importer Affected by VCID-99ws-y1uc-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:29:21.942124+00:00 Debian Oval Importer Affected by VCID-het3-uz92-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:23:38.161861+00:00 Debian Oval Importer Affected by VCID-wgs9-r7h8-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:49:34.997456+00:00 Debian Oval Importer Affected by VCID-9243-ckwg-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:26:51.687969+00:00 Debian Oval Importer Affected by VCID-sygv-yxwa-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:30:09.652004+00:00 Debian Oval Importer Affected by VCID-p5qf-n6du-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T11:45:43.829882+00:00 Debian Oval Importer Affected by VCID-yg6r-axzc-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T10:11:48.530445+00:00 Debian Oval Importer Affected by VCID-yg6r-axzc-aaar https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-21T10:04:19.944123+00:00 Debian Oval Importer Affected by VCID-9243-ckwg-aaap https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-21T09:49:19.297349+00:00 Debian Oval Importer Affected by VCID-het3-uz92-aaah https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-21T09:27:40.242190+00:00 Debian Oval Importer Affected by VCID-g6rw-9kg2-aaad https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T00:41:53.368540+00:00 Debian Oval Importer Affected by VCID-2gzz-6rpz-aaag None 36.1.3
2025-06-21T00:41:44.803544+00:00 Debian Oval Importer Affected by VCID-p5qf-n6du-aaaf None 36.1.3
2025-06-21T00:09:51.316658+00:00 Debian Oval Importer Affected by VCID-wgs9-r7h8-aaaa None 36.1.3
2025-06-20T23:54:49.711368+00:00 Debian Oval Importer Affected by VCID-99ws-y1uc-aaar None 36.1.3
2025-06-20T23:02:05.955769+00:00 Debian Oval Importer Affected by VCID-sygv-yxwa-aaac None 36.1.3
2025-06-20T22:42:52.345858+00:00 Debian Oval Importer Affected by VCID-faq9-s2nc-aaae None 36.1.3
2025-06-20T21:50:33.979091+00:00 Debian Oval Importer Affected by VCID-yg6r-axzc-aaar None 36.1.3
2025-06-20T19:38:59.324621+00:00 Debian Oval Importer Affected by VCID-het3-uz92-aaah None 36.1.3
2025-06-20T19:36:34.266379+00:00 Debian Oval Importer Affected by VCID-9243-ckwg-aaap None 36.1.3
2025-06-20T19:31:15.218027+00:00 Debian Oval Importer Affected by VCID-g6rw-9kg2-aaad None 36.1.3
2025-06-08T10:14:37.122669+00:00 Debian Oval Importer Affected by VCID-2gzz-6rpz-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:52:19.173281+00:00 Debian Oval Importer Affected by VCID-faq9-s2nc-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:27:54.972461+00:00 Debian Oval Importer Affected by VCID-g6rw-9kg2-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:27:39.457721+00:00 Debian Oval Importer Affected by VCID-99ws-y1uc-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:23:54.471203+00:00 Debian Oval Importer Affected by VCID-het3-uz92-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:18:11.790261+00:00 Debian Oval Importer Affected by VCID-wgs9-r7h8-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:42:57.929170+00:00 Debian Oval Importer Affected by VCID-9243-ckwg-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:20:51.854130+00:00 Debian Oval Importer Affected by VCID-sygv-yxwa-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:29:41.273551+00:00 Debian Oval Importer Affected by VCID-p5qf-n6du-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:00:48.665350+00:00 Debian Oval Importer Affected by VCID-yg6r-axzc-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T04:00:49.430672+00:00 Debian Oval Importer Affected by VCID-yg6r-axzc-aaar https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-08T03:53:28.231538+00:00 Debian Oval Importer Affected by VCID-9243-ckwg-aaap https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-08T03:37:58.674692+00:00 Debian Oval Importer Affected by VCID-het3-uz92-aaah https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-08T03:15:50.265907+00:00 Debian Oval Importer Affected by VCID-g6rw-9kg2-aaad https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-07T18:04:27.394072+00:00 Debian Oval Importer Affected by VCID-2gzz-6rpz-aaag None 36.1.0
2025-06-07T18:04:19.157479+00:00 Debian Oval Importer Affected by VCID-p5qf-n6du-aaaf None 36.1.0
2025-06-07T17:32:38.165110+00:00 Debian Oval Importer Affected by VCID-wgs9-r7h8-aaaa None 36.1.0
2025-06-07T17:17:41.657889+00:00 Debian Oval Importer Affected by VCID-99ws-y1uc-aaar None 36.1.0
2025-06-07T16:25:15.151608+00:00 Debian Oval Importer Affected by VCID-sygv-yxwa-aaac None 36.1.0
2025-06-07T16:06:46.547675+00:00 Debian Oval Importer Affected by VCID-faq9-s2nc-aaae None 36.1.0
2025-06-07T15:13:46.070099+00:00 Debian Oval Importer Affected by VCID-yg6r-axzc-aaar None 36.1.0
2025-06-07T13:33:14.382348+00:00 Debian Oval Importer Affected by VCID-het3-uz92-aaah None 36.1.0
2025-06-07T13:31:41.056083+00:00 Debian Oval Importer Affected by VCID-9243-ckwg-aaap None 36.1.0
2025-06-07T13:28:01.836144+00:00 Debian Oval Importer Affected by VCID-g6rw-9kg2-aaad None 36.1.0
2025-04-12T15:55:28.727552+00:00 Debian Oval Importer Affected by VCID-2gzz-6rpz-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T08:24:32.095678+00:00 Debian Oval Importer Affected by VCID-faq9-s2nc-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T08:00:19.079413+00:00 Debian Oval Importer Affected by VCID-g6rw-9kg2-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:59:02.086229+00:00 Debian Oval Importer Affected by VCID-99ws-y1uc-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:55:16.312865+00:00 Debian Oval Importer Affected by VCID-het3-uz92-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:49:31.680951+00:00 Debian Oval Importer Affected by VCID-wgs9-r7h8-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:15:26.785050+00:00 Debian Oval Importer Affected by VCID-9243-ckwg-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:53:09.518308+00:00 Debian Oval Importer Affected by VCID-sygv-yxwa-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:00:56.869484+00:00 Debian Oval Importer Affected by VCID-p5qf-n6du-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:31:44.181664+00:00 Debian Oval Importer Affected by VCID-yg6r-axzc-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T02:29:04.374321+00:00 Debian Oval Importer Affected by VCID-yg6r-axzc-aaar https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-08T02:21:18.755293+00:00 Debian Oval Importer Affected by VCID-9243-ckwg-aaap https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-08T02:05:43.855004+00:00 Debian Oval Importer Affected by VCID-het3-uz92-aaah https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-08T01:43:15.366866+00:00 Debian Oval Importer Affected by VCID-g6rw-9kg2-aaad https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-07T16:41:32.250101+00:00 Debian Oval Importer Affected by VCID-2gzz-6rpz-aaag None 36.0.0
2025-04-07T16:41:23.275188+00:00 Debian Oval Importer Affected by VCID-p5qf-n6du-aaaf None 36.0.0
2025-04-07T16:07:15.027938+00:00 Debian Oval Importer Affected by VCID-wgs9-r7h8-aaaa None 36.0.0
2025-04-07T15:51:37.291424+00:00 Debian Oval Importer Affected by VCID-99ws-y1uc-aaar None 36.0.0
2025-04-07T14:57:09.371422+00:00 Debian Oval Importer Affected by VCID-sygv-yxwa-aaac None 36.0.0
2025-04-07T14:38:01.036900+00:00 Debian Oval Importer Affected by VCID-faq9-s2nc-aaae None 36.0.0
2025-04-07T13:45:24.722757+00:00 Debian Oval Importer Affected by VCID-yg6r-axzc-aaar None 36.0.0
2025-04-07T12:08:40.230317+00:00 Debian Oval Importer Affected by VCID-het3-uz92-aaah None 36.0.0
2025-04-07T12:07:06.286102+00:00 Debian Oval Importer Affected by VCID-9243-ckwg-aaap None 36.0.0
2025-04-07T12:03:32.971938+00:00 Debian Oval Importer Affected by VCID-g6rw-9kg2-aaad None 36.0.0