Fedora 20 : akonadi-1.13.0-2.fc20 / amor-4.14.1-1.fc20 / analitza-4.14.1-1.fc20 / ark-4.14.1-1.fc20 / etc (2014-11448)

medium Nessus Plugin ID 77937

Synopsis

The remote Fedora host is missing one or more security updates.

Description

KDE released updates for its Applications and Development Platform, the first in a series of monthly stabilization updates to the 4.14 series. This update also includes the latest stable calligra-2.8.6 and digikam-4.3.0 releases. See also http://kde.org/announcements/4.14/ , http://kde.org/announcements/announce-4.14.1.php , https://www.calligra.org/news/calligra-2-8-6-released/ , https://www.digikam.org/node/718

The update also addresses CVE-2014-5033, fixed in kdelibs ' 4.14.0:
KAuth was calling PolicyKit 1 (polkit) in an insecure way.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected packages.

See Also

https://bugzilla.redhat.com/show_bug.cgi?id=1094890

https://www.calligra.org/news/calligra-2-8-6-released/

https://www.digikam.org/node/718/

https://www.kde.org/announcements/4.14/

https://www.kde.org/announcements/announce-4.14.1.php

http://www.nessus.org/u?049fb483

http://www.nessus.org/u?04c1247f

http://www.nessus.org/u?05f9887f

http://www.nessus.org/u?08735a07

http://www.nessus.org/u?0927ac23

http://www.nessus.org/u?0a9d0bd3

http://www.nessus.org/u?0b8652ea

http://www.nessus.org/u?0b96cc30

http://www.nessus.org/u?0fa6cebb

http://www.nessus.org/u?13b4e399

http://www.nessus.org/u?1427af38

http://www.nessus.org/u?1447e99e

http://www.nessus.org/u?153a8387

http://www.nessus.org/u?16212af1

http://www.nessus.org/u?1a0b6e44

http://www.nessus.org/u?1af39b2c

http://www.nessus.org/u?1d401aa4

http://www.nessus.org/u?1f917ff9

http://www.nessus.org/u?1fee9070

http://www.nessus.org/u?20dc171d

http://www.nessus.org/u?2123b04a

http://www.nessus.org/u?24c5d0c0

http://www.nessus.org/u?25daa1f3

http://www.nessus.org/u?2802bae8

http://www.nessus.org/u?2a60e608

http://www.nessus.org/u?2a9f3862

http://www.nessus.org/u?2e89575c

http://www.nessus.org/u?2ea5fad7

http://www.nessus.org/u?33d92ef5

http://www.nessus.org/u?349c71a4

http://www.nessus.org/u?38db91a3

http://www.nessus.org/u?3b1dccb2

http://www.nessus.org/u?3beeac68

http://www.nessus.org/u?3e102ba6

http://www.nessus.org/u?4067c53f

http://www.nessus.org/u?40a20ec5

http://www.nessus.org/u?43969367

http://www.nessus.org/u?444ee8aa

http://www.nessus.org/u?45c4adb7

http://www.nessus.org/u?4642ecd6

http://www.nessus.org/u?46591924

http://www.nessus.org/u?4771d573

http://www.nessus.org/u?49fbe200

http://www.nessus.org/u?4ce67a87

http://www.nessus.org/u?4e4d12dc

http://www.nessus.org/u?4fc30846

http://www.nessus.org/u?51545f22

http://www.nessus.org/u?541f75e5

http://www.nessus.org/u?5476a2de

http://www.nessus.org/u?5a252844

http://www.nessus.org/u?5a77d7f9

http://www.nessus.org/u?5c41b715

http://www.nessus.org/u?5d327508

http://www.nessus.org/u?5d445cdd

http://www.nessus.org/u?643110a6

http://www.nessus.org/u?670e4cb7

http://www.nessus.org/u?67601181

http://www.nessus.org/u?6ad23d37

http://www.nessus.org/u?6f181b0b

http://www.nessus.org/u?70995636

http://www.nessus.org/u?7206044d

http://www.nessus.org/u?7764a10e

http://www.nessus.org/u?78eabe9f

http://www.nessus.org/u?7afadda7

http://www.nessus.org/u?7b997288

http://www.nessus.org/u?7ce5f92d

http://www.nessus.org/u?7d6fd5cc

http://www.nessus.org/u?7dadb060

http://www.nessus.org/u?7e062257

http://www.nessus.org/u?8098ebc0

http://www.nessus.org/u?80f43699

http://www.nessus.org/u?80f995cd

http://www.nessus.org/u?815ec671

http://www.nessus.org/u?8333cb50

http://www.nessus.org/u?88db7340

http://www.nessus.org/u?8e993943

http://www.nessus.org/u?93e29e75

http://www.nessus.org/u?97657f11

http://www.nessus.org/u?9b1f85e2

http://www.nessus.org/u?9b85978c

http://www.nessus.org/u?9cbb25e3

http://www.nessus.org/u?a6a36014

http://www.nessus.org/u?a96ddfb8

http://www.nessus.org/u?ad2ddd1b

http://www.nessus.org/u?aeb5c5d9

http://www.nessus.org/u?af01871b

http://www.nessus.org/u?af91d95a

http://www.nessus.org/u?b518859a

http://www.nessus.org/u?b5fe8720

http://www.nessus.org/u?b6351810

http://www.nessus.org/u?c0746419

http://www.nessus.org/u?c1dbe597

http://www.nessus.org/u?c32b8114

http://www.nessus.org/u?c7704492

http://www.nessus.org/u?ca4522ed

http://www.nessus.org/u?cbd8d25e

http://www.nessus.org/u?ccb2279e

http://www.nessus.org/u?ce0b7293

http://www.nessus.org/u?cf2d6811

http://www.nessus.org/u?d06d389a

http://www.nessus.org/u?d3abbfc4

http://www.nessus.org/u?d3c400f3

http://www.nessus.org/u?d491bee6

http://www.nessus.org/u?d9f83123

http://www.nessus.org/u?dbd714a5

http://www.nessus.org/u?dc0a75ee

http://www.nessus.org/u?de6c6c5c

http://www.nessus.org/u?e283ecd2

http://www.nessus.org/u?e31c3220

http://www.nessus.org/u?e33dc719

http://www.nessus.org/u?e7395d5b

http://www.nessus.org/u?e9160704

http://www.nessus.org/u?ee5ad235

http://www.nessus.org/u?ef8f4a10

http://www.nessus.org/u?f0913cfa

http://www.nessus.org/u?f15c8d81

http://www.nessus.org/u?f5cc7fdc

http://www.nessus.org/u?f602b0e6

http://www.nessus.org/u?f7dbabee

http://www.nessus.org/u?f8117bb2

http://www.nessus.org/u?f865dba2

http://www.nessus.org/u?fa5490c5

http://www.nessus.org/u?fc9d5c49

http://www.nessus.org/u?fcc70153

http://www.nessus.org/u?fe960c35

Plugin Details

Severity: Medium

ID: 77937

File Name: fedora_2014-11448.nasl

Version: 1.8

Type: Local

Agent: unix

Published: 9/29/2014

Updated: 1/11/2021

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Tenable Cloud Security, Tenable Self-Hosted Container Security, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3

Percentile: 23.18

CVSS v2

Risk Factor: Medium

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:kteatime, p-cpe:/a:fedoraproject:fedora:kdegraphics-strigi-analyzer, p-cpe:/a:fedoraproject:fedora:kdebindings, p-cpe:/a:fedoraproject:fedora:digikam, p-cpe:/a:fedoraproject:fedora:kdeutils, p-cpe:/a:fedoraproject:fedora:jovie, p-cpe:/a:fedoraproject:fedora:khangman, p-cpe:/a:fedoraproject:fedora:kfilemetadata, p-cpe:/a:fedoraproject:fedora:libkcompactdisc, p-cpe:/a:fedoraproject:fedora:baloo-widgets, p-cpe:/a:fedoraproject:fedora:smokeqt, p-cpe:/a:fedoraproject:fedora:ktimer, p-cpe:/a:fedoraproject:fedora:kwordquiz, p-cpe:/a:fedoraproject:fedora:kbruch, p-cpe:/a:fedoraproject:fedora:kdemultimedia, p-cpe:/a:fedoraproject:fedora:cantor, p-cpe:/a:fedoraproject:fedora:kde-print-manager, p-cpe:/a:fedoraproject:fedora:kanagram, p-cpe:/a:fedoraproject:fedora:kross-interpreters, p-cpe:/a:fedoraproject:fedora:nepomuk-widgets, p-cpe:/a:fedoraproject:fedora:kdegraphics, p-cpe:/a:fedoraproject:fedora:akonadi, p-cpe:/a:fedoraproject:fedora:marble, p-cpe:/a:fedoraproject:fedora:konsole, p-cpe:/a:fedoraproject:fedora:parley, p-cpe:/a:fedoraproject:fedora:kdepim, p-cpe:/a:fedoraproject:fedora:ruby-qt, p-cpe:/a:fedoraproject:fedora:kdenetwork-strigi-analyzers, p-cpe:/a:fedoraproject:fedora:kwalletmanager, p-cpe:/a:fedoraproject:fedora:amor, p-cpe:/a:fedoraproject:fedora:kdnssd, p-cpe:/a:fedoraproject:fedora:krfb, p-cpe:/a:fedoraproject:fedora:ksystemlog, p-cpe:/a:fedoraproject:fedora:step, p-cpe:/a:fedoraproject:fedora:kalzium, p-cpe:/a:fedoraproject:fedora:kaccessible, p-cpe:/a:fedoraproject:fedora:kdenetwork-filesharing, p-cpe:/a:fedoraproject:fedora:kmousetool, p-cpe:/a:fedoraproject:fedora:kuser, p-cpe:/a:fedoraproject:fedora:kdenetwork, p-cpe:/a:fedoraproject:fedora:analitza, p-cpe:/a:fedoraproject:fedora:kimono, p-cpe:/a:fedoraproject:fedora:ktux, p-cpe:/a:fedoraproject:fedora:kde-runtime, p-cpe:/a:fedoraproject:fedora:kdeadmin, p-cpe:/a:fedoraproject:fedora:libkipi, p-cpe:/a:fedoraproject:fedora:audiocd-kio, p-cpe:/a:fedoraproject:fedora:kfloppy, p-cpe:/a:fedoraproject:fedora:kiten, p-cpe:/a:fedoraproject:fedora:kturtle, p-cpe:/a:fedoraproject:fedora:kmag, p-cpe:/a:fedoraproject:fedora:kde-baseapps, p-cpe:/a:fedoraproject:fedora:ark, p-cpe:/a:fedoraproject:fedora:kqtquickcharts, p-cpe:/a:fedoraproject:fedora:libkolab, p-cpe:/a:fedoraproject:fedora:kdetoys, p-cpe:/a:fedoraproject:fedora:kcron, p-cpe:/a:fedoraproject:fedora:kdeplasma-addons, p-cpe:/a:fedoraproject:fedora:svgpart, p-cpe:/a:fedoraproject:fedora:blinken, p-cpe:/a:fedoraproject:fedora:kremotecontrol, p-cpe:/a:fedoraproject:fedora:kopete, p-cpe:/a:fedoraproject:fedora:kig, p-cpe:/a:fedoraproject:fedora:kdegraphics-mobipocket, p-cpe:/a:fedoraproject:fedora:okular, p-cpe:/a:fedoraproject:fedora:smokegen, p-cpe:/a:fedoraproject:fedora:kphotoalbum, p-cpe:/a:fedoraproject:fedora:smokekde, p-cpe:/a:fedoraproject:fedora:libksane, p-cpe:/a:fedoraproject:fedora:kdeaccessibility, p-cpe:/a:fedoraproject:fedora:krdc, p-cpe:/a:fedoraproject:fedora:kppp, p-cpe:/a:fedoraproject:fedora:ksnapshot, p-cpe:/a:fedoraproject:fedora:kgpg, p-cpe:/a:fedoraproject:fedora:kdf, p-cpe:/a:fedoraproject:fedora:subsurface, p-cpe:/a:fedoraproject:fedora:kde-l10n, p-cpe:/a:fedoraproject:fedora:calligra-l10n, p-cpe:/a:fedoraproject:fedora:libkexiv2, p-cpe:/a:fedoraproject:fedora:libkdeedu, cpe:/o:fedoraproject:fedora:20, p-cpe:/a:fedoraproject:fedora:kcolorchooser, p-cpe:/a:fedoraproject:fedora:nepomuk-core, p-cpe:/a:fedoraproject:fedora:kgeography, p-cpe:/a:fedoraproject:fedora:qyoto, p-cpe:/a:fedoraproject:fedora:kolourpaint, p-cpe:/a:fedoraproject:fedora:superkaramba, p-cpe:/a:fedoraproject:fedora:dragon, p-cpe:/a:fedoraproject:fedora:libkcddb, p-cpe:/a:fedoraproject:fedora:kcalc, p-cpe:/a:fedoraproject:fedora:pairs, p-cpe:/a:fedoraproject:fedora:kdegraphics-thumbnailers, p-cpe:/a:fedoraproject:fedora:klettres, p-cpe:/a:fedoraproject:fedora:filelight, p-cpe:/a:fedoraproject:fedora:pykde4, p-cpe:/a:fedoraproject:fedora:sweeper, p-cpe:/a:fedoraproject:fedora:ruby-korundum, p-cpe:/a:fedoraproject:fedora:kdeartwork, p-cpe:/a:fedoraproject:fedora:kstars, p-cpe:/a:fedoraproject:fedora:kget, p-cpe:/a:fedoraproject:fedora:gwenview, p-cpe:/a:fedoraproject:fedora:kcharselect, p-cpe:/a:fedoraproject:fedora:libkgapi, p-cpe:/a:fedoraproject:fedora:kdeedu, p-cpe:/a:fedoraproject:fedora:calligra, p-cpe:/a:fedoraproject:fedora:kamera, p-cpe:/a:fedoraproject:fedora:kate, p-cpe:/a:fedoraproject:fedora:kdelibs, p-cpe:/a:fedoraproject:fedora:kmix, p-cpe:/a:fedoraproject:fedora:kdepimlibs, p-cpe:/a:fedoraproject:fedora:kde-base-artwork, p-cpe:/a:fedoraproject:fedora:ktouch, p-cpe:/a:fedoraproject:fedora:oxygen-icon-theme, p-cpe:/a:fedoraproject:fedora:kmplot, p-cpe:/a:fedoraproject:fedora:rocs, p-cpe:/a:fedoraproject:fedora:juk, p-cpe:/a:fedoraproject:fedora:kde-wallpapers, p-cpe:/a:fedoraproject:fedora:kdepim-runtime, p-cpe:/a:fedoraproject:fedora:kgamma, p-cpe:/a:fedoraproject:fedora:kruler, p-cpe:/a:fedoraproject:fedora:kmouth, p-cpe:/a:fedoraproject:fedora:baloo, p-cpe:/a:fedoraproject:fedora:kscd, p-cpe:/a:fedoraproject:fedora:kalgebra, p-cpe:/a:fedoraproject:fedora:libkdcraw, p-cpe:/a:fedoraproject:fedora:ksaneplugin

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 9/25/2014

Vulnerability Publication Date: 8/19/2014

Reference Information

CVE: CVE-2014-5033

FEDORA: 2014-11448