On mySimon: Radius Toothbrush
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 22 of 74:
Next »
« Previous
Common mistake for the newbie like osreinstall
First you must read and UNDERSTAND the advisory:

KDE kjs UTF-8 Encoded URI Buffer Overflow Vulnerability
http://secunia.com/advisories/18500/

Then you will realise the problem is in kdelibs.

To fix the problem you update your distributions version of
kdelibs if affected. For example RHEL 4 (other versions
unaffected) the instructions can be found here:

https://rhn.redhat.com/errata/RHSA-2006-0184.html

The problem is very serious for KDE users, but clearly it doesn't
require "builder"s to move from kdelibs (fix is available to all
their users by updating kdelibs) and "newbies" don't have to
recompile anything, nor does this issue have anything to do with
the kernel.

"Might as well be monoculture with the effort involved in
switching."

It is a common problem with the increasing number of MSCEs
commenting on *nix system. Their lack of knowledge is quite
frightening and clearly demonstrated in these ill-informed
attacks after a linux vulnerability article.

Linux gives you choice of desktop (or none). Only KDE users are
affected by this serious vulnerability. No monoculture issues for
users or "builder"s.
Posted by: Richard Flude   Posted on: 01/21/06 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Go figure ........  I_am_hellion_z | 01/20/06
non issue  linuxoverwindows | 01/21/06
Oops safari  jimk_z | 01/22/06
KDE flaws put Linux, Unix systems at risk  Loverock Davidson | 01/20/06
Well...  bill@... | 01/20/06
Well  Loverock Davidson | 01/20/06
nope, wrong again  linuxoverwindows | 01/21/06
Looks like i'm right... again  Loverock Davidson | 01/21/06
just because...  linuxoverwindows | 01/21/06
No your just warped around your own gravitational field  whieber | 01/21/06
Get the facts straight.  mpoppe | 01/23/06
Fewl  currie | 01/21/06
Yes  Loverock Davidson | 01/21/06
No  SC-man | 01/23/06
You're such a f'n idiot.  Henaway | 01/24/06
Isn't KDE for LINUX ?! ...... And Really Popular?!  I_am_hellion_z | 01/20/06
Except, KDE is NOT just a Linux Program  xrxca | 01/20/06
But, unlike Windows, it is not on ALL systems, and can be removed.  DonnieBoy | 01/21/06
Oh Noooooooo !!!  osreinstall | 01/21/06
easier than that, let me break it down  linuxoverwindows | 01/21/06
You don't have to. I already know.  osreinstall | 01/21/06
Common mistake for the newbie like osreinstall  Richard Flude | 01/21/06
yeah, heres an example.  linuxoverwindows | 01/21/06
Cannot handle a little fun. Oh come'on we hear it from you all the time.  osreinstall | 01/21/06
re: can not handle a little fun.  linuxoverwindows | 01/21/06
Satire is the best.  osreinstall | 01/22/06
the flaw is if you use konq and ked and java.  linuxoverwindows | 01/21/06
*kde  linuxoverwindows | 01/21/06
Correction . . .  koelsh | 01/21/06
Desktop?  currie | 01/21/06
or elinks  linuxoverwindows | 01/21/06
U R A phu King ID10T!  whieber | 01/20/06
OMG  Loverock Davidson | 01/21/06
Nothing personal, just seemed funny at the time.  whieber | 01/21/06
our boy clippy  linuxoverwindows | 01/21/06
Linux is well on its way  node357 | 01/23/06
You keep thinking that  Loverock Davidson | 01/23/06
Name Calling?  currie | 01/21/06
why resort to it...  linuxoverwindows | 01/21/06
burning reck  currie | 01/21/06
dont get me wrong...  linuxoverwindows | 01/21/06
Dream On  bigpicture | 01/20/06
Really guys, why do you keep...  thetargos | 01/21/06
They keep answering  Loverock Davidson | 01/21/06
see what i mean?  linuxoverwindows | 01/21/06
Or perhaps...  Mori_Sakura | 02/04/06
No need to  Loverock Davidson | 01/21/06
Enjoy a little sarcasm...  whieber | 01/21/06
The Patch has been out almost as long as this story  Jwheat | 01/23/06
Wow, I'm shocked ...  worknman | 01/20/06
Am not  currie | 01/21/06
Sorry, I'll take a buffer overflow on Linux over Windows any day...  webaugur | 01/20/06
Ahhh.....diversion at it's finest.  IT Scion | 01/22/06
DEP and Windows  Umbar | 01/23/06
I quit Linux because of KDE!!  joelle-bryan | 01/20/06
Each to their own  currie | 01/21/06
Think about your utility  endrix | 01/23/06
Right...  horusfalcon | 01/23/06
The important thing to notice is that there is no mono-culture.  DonnieBoy | 01/20/06
Percentages  duane.wills@... | 01/20/06
KDE flaw  raybdavisjr | 01/21/06
lol  linuxoverwindows | 01/21/06
erm..  currie | 01/21/06
What are you talking about dude?  whieber | 01/21/06
neh?  linuxoverwindows | 01/21/06
Re: KDE flaw  Mori_Sakura | 02/04/06
Importantly, is that it gets reported and it get's fixed  Boot_Agnostic | 01/21/06
hear hear  linuxoverwindows | 01/21/06
This is how a flaw ought to be handled.  Yen_z | 01/23/06
Back to subject...  Mitch 74 | 01/23/06
Errr....  Yen_z | 01/23/06
Impossible in OSS ... "Many Eyes" Watching Code???  PMC-CON | 01/23/06
Joe Sixpack is Driven  s_gamgee | 01/24/06
Nice systems  Boot_Agnostic | 01/26/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement

SmartPlanet

Click Here