CVE-2024-36041

NameCVE-2024-36041
DescriptionKSmserver in KDE Plasma Workspace (aka plasma-workspace) before 5.27.11.1 and 6.x before 6.0.5.1 allows connections via ICE based purely on the host, i.e., all local connections are accepted. This allows another user on the same machine to gain access to the session manager, e.g., use the session-restore feature to execute arbitrary code as the victim (on the next boot) via earlier use of the /tmp directory.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-3827-1, DSA-5723-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
plasma-workspace (PTS)bullseye (security), bullseye4:5.20.5-6+deb11u1fixed
bookworm, bookworm (security)4:5.27.5-2+deb12u2fixed
sid, trixie4:5.27.11.1-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
plasma-workspacesourcebuster4:5.14.5.1-1+deb10u1DLA-3827-1
plasma-workspacesourcebullseye4:5.20.5-6+deb11u1DSA-5723-1
plasma-workspacesourcebookworm4:5.27.5-2+deb12u2DSA-5723-1
plasma-workspacesource(unstable)4:5.27.11.1-1

Notes

https://kde.org/info/security/advisory-20240531-1.txt
Fixed by: https://invent.kde.org/plasma/plasma-workspace/-/commit/da843d3fdb143ed44094c8e6246cfb8305f6f09f
Fixed by: https://invent.kde.org/plasma/plasma-workspace/-/commit/1d5aa1d27bff87b2d242ed759cfb2ce15a5c3de7
The second commit is not needed due to plasma-workspace depending on x11-xserver-utils.

Search for package or bug name: Reporting problems