Bugzilla – Bug 1079751
VUL-0: CVE-2018-6791: plasma5-workspace: a specially crafted file system label may execute arbitrary code
Last modified: 2018-02-08 15:45:58 UTC
CVE-2018-6791 An issue was discovered in soliduiserver/deviceserviceaction.cpp in KDE Plasma Workspace before 5.12.0. When a vfat thumbdrive that contains `` or $() in its volume label is plugged in and mounted through the device notifier, it's interpreted as a shell command, leading to a possibility of arbitrary command execution. An example of an offending volume label is "$(touch b)" -- this will create a file called b in the home folder. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6791 https://cgit.kde.org/plasma-workspace.git/commit/?id=9db872df82c258315c6ebad800af59e81ffb9212 https://bugs.kde.org/show_bug.cgi?id=389815 Already submitted in https://build.opensuse.org/request/show/573160
release for Leap, done
openSUSE-SU-2018:0397-1: An update that solves two vulnerabilities and has one errata is now available. Category: security (important) Bug References: 1013550,1079429,1079751 CVE References: CVE-2018-6790,CVE-2018-6791 Sources used: openSUSE Leap 42.3 (src): plasma5-workspace-5.8.7-11.1
openSUSE-SU-2018:0398-1: An update that solves two vulnerabilities and has one errata is now available. Category: security (important) Bug References: 1013550,1079429,1079751 CVE References: CVE-2018-6790,CVE-2018-6791 Sources used: SUSE Package Hub for SUSE Linux Enterprise 12 (src): plasma5-workspace-5.8.7-8.1