Fedora 20 : akonadi-1.13.0-2.fc20 / amor-4.14.1-1.fc20 / analitza-4.14.1-1.fc20 / ark-4.14.1-1.fc20 / etc (2014-11448)

medium Nessus Plugin ID 77937

Synopsis

The remote Fedora host is missing one or more security updates.

Description

KDE released updates for its Applications and Development Platform, the first in a series of monthly stabilization updates to the 4.14 series. This update also includes the latest stable calligra-2.8.6 and digikam-4.3.0 releases. See also http://kde.org/announcements/4.14/ , http://kde.org/announcements/announce-4.14.1.php , https://www.calligra.org/news/calligra-2-8-6-released/ , https://www.digikam.org/node/718

The update also addresses CVE-2014-5033, fixed in kdelibs ' 4.14.0:
KAuth was calling PolicyKit 1 (polkit) in an insecure way.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected packages.

See Also

https://www.kde.org/announcements/4.14/

https://www.kde.org/announcements/announce-4.14.1.php

https://bugzilla.redhat.com/show_bug.cgi?id=1094890

http://www.nessus.org/u?b518859a

http://www.nessus.org/u?5a252844

http://www.nessus.org/u?ef8f4a10

http://www.nessus.org/u?153a8387

http://www.nessus.org/u?4fc30846

http://www.nessus.org/u?1f917ff9

http://www.nessus.org/u?ad2ddd1b

http://www.nessus.org/u?0b8652ea

http://www.nessus.org/u?0a9d0bd3

http://www.nessus.org/u?ca4522ed

http://www.nessus.org/u?80f43699

http://www.nessus.org/u?9b85978c

http://www.nessus.org/u?4771d573

http://www.nessus.org/u?c32b8114

http://www.nessus.org/u?c1dbe597

http://www.nessus.org/u?e7395d5b

http://www.nessus.org/u?f0913cfa

http://www.nessus.org/u?fc9d5c49

http://www.nessus.org/u?d06d389a

http://www.nessus.org/u?16212af1

http://www.nessus.org/u?0b96cc30

http://www.nessus.org/u?de6c6c5c

http://www.nessus.org/u?8e993943

http://www.nessus.org/u?670e4cb7

http://www.nessus.org/u?2123b04a

http://www.nessus.org/u?43969367

http://www.nessus.org/u?7206044d

http://www.nessus.org/u?46591924

http://www.nessus.org/u?40a20ec5

http://www.nessus.org/u?7d6fd5cc

http://www.nessus.org/u?9cbb25e3

http://www.nessus.org/u?1a0b6e44

http://www.nessus.org/u?e283ecd2

http://www.nessus.org/u?cf2d6811

http://www.nessus.org/u?af01871b

http://www.nessus.org/u?af91d95a

http://www.nessus.org/u?f15c8d81

http://www.nessus.org/u?4e4d12dc

http://www.nessus.org/u?dbd714a5

http://www.nessus.org/u?ee5ad235

http://www.nessus.org/u?349c71a4

http://www.nessus.org/u?c0746419

http://www.nessus.org/u?f5cc7fdc

http://www.nessus.org/u?7dadb060

http://www.nessus.org/u?7b997288

http://www.nessus.org/u?d9f83123

http://www.nessus.org/u?5d445cdd

http://www.nessus.org/u?93e29e75

http://www.nessus.org/u?7e062257

http://www.nessus.org/u?6f181b0b

http://www.nessus.org/u?cbd8d25e

http://www.nessus.org/u?70995636

http://www.nessus.org/u?a96ddfb8

http://www.nessus.org/u?d3abbfc4

http://www.nessus.org/u?8098ebc0

http://www.nessus.org/u?e9160704

http://www.nessus.org/u?d3c400f3

http://www.nessus.org/u?88db7340

http://www.nessus.org/u?24c5d0c0

http://www.nessus.org/u?e31c3220

http://www.nessus.org/u?fcc70153

http://www.nessus.org/u?f7dbabee

http://www.nessus.org/u?13b4e399

http://www.nessus.org/u?25daa1f3

http://www.nessus.org/u?1fee9070

http://www.nessus.org/u?4642ecd6

http://www.nessus.org/u?c7704492

http://www.nessus.org/u?049fb483

http://www.nessus.org/u?1af39b2c

http://www.nessus.org/u?4067c53f

http://www.nessus.org/u?04c1247f

http://www.nessus.org/u?80f995cd

http://www.nessus.org/u?2a9f3862

http://www.nessus.org/u?815ec671

http://www.nessus.org/u?ccb2279e

http://www.nessus.org/u?51545f22

http://www.nessus.org/u?b6351810

http://www.nessus.org/u?97657f11

http://www.nessus.org/u?7ce5f92d

http://www.nessus.org/u?1427af38

http://www.nessus.org/u?8333cb50

http://www.nessus.org/u?3e102ba6

http://www.nessus.org/u?67601181

http://www.nessus.org/u?7764a10e

http://www.nessus.org/u?1d401aa4

http://www.nessus.org/u?f8117bb2

http://www.nessus.org/u?d491bee6

http://www.nessus.org/u?fe960c35

http://www.nessus.org/u?9b1f85e2

http://www.nessus.org/u?643110a6

http://www.nessus.org/u?05f9887f

http://www.nessus.org/u?49fbe200

http://www.nessus.org/u?1447e99e

http://www.nessus.org/u?b5fe8720

http://www.nessus.org/u?f865dba2

http://www.nessus.org/u?5a77d7f9

http://www.nessus.org/u?ce0b7293

http://www.nessus.org/u?3b1dccb2

http://www.nessus.org/u?08735a07

http://www.nessus.org/u?2a60e608

http://www.nessus.org/u?5d327508

http://www.nessus.org/u?2802bae8

http://www.nessus.org/u?f602b0e6

http://www.nessus.org/u?45c4adb7

http://www.nessus.org/u?3beeac68

http://www.nessus.org/u?4ce67a87

http://www.nessus.org/u?0927ac23

http://www.nessus.org/u?e33dc719

http://www.nessus.org/u?541f75e5

http://www.nessus.org/u?5c41b715

http://www.nessus.org/u?444ee8aa

http://www.nessus.org/u?aeb5c5d9

http://www.nessus.org/u?dc0a75ee

http://www.nessus.org/u?fa5490c5

http://www.nessus.org/u?5476a2de

http://www.nessus.org/u?20dc171d

http://www.nessus.org/u?7afadda7

http://www.nessus.org/u?a6a36014

http://www.nessus.org/u?33d92ef5

http://www.nessus.org/u?6ad23d37

http://www.nessus.org/u?0fa6cebb

http://www.nessus.org/u?2e89575c

http://www.nessus.org/u?38db91a3

http://www.nessus.org/u?2ea5fad7

http://www.nessus.org/u?78eabe9f

https://www.calligra.org/news/calligra-2-8-6-released/

https://www.digikam.org/node/718/

Plugin Details

Severity: Medium

ID: 77937

File Name: fedora_2014-11448.nasl

Version: 1.8

Type: local

Agent: unix

Published: 9/29/2014

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:akonadi, p-cpe:/a:fedoraproject:fedora:amor, p-cpe:/a:fedoraproject:fedora:analitza, p-cpe:/a:fedoraproject:fedora:ark, p-cpe:/a:fedoraproject:fedora:audiocd-kio, p-cpe:/a:fedoraproject:fedora:baloo, p-cpe:/a:fedoraproject:fedora:baloo-widgets, p-cpe:/a:fedoraproject:fedora:blinken, p-cpe:/a:fedoraproject:fedora:calligra, p-cpe:/a:fedoraproject:fedora:calligra-l10n, p-cpe:/a:fedoraproject:fedora:cantor, p-cpe:/a:fedoraproject:fedora:digikam, p-cpe:/a:fedoraproject:fedora:dragon, p-cpe:/a:fedoraproject:fedora:filelight, p-cpe:/a:fedoraproject:fedora:gwenview, p-cpe:/a:fedoraproject:fedora:jovie, p-cpe:/a:fedoraproject:fedora:juk, p-cpe:/a:fedoraproject:fedora:kaccessible, p-cpe:/a:fedoraproject:fedora:kalgebra, p-cpe:/a:fedoraproject:fedora:kalzium, p-cpe:/a:fedoraproject:fedora:kamera, p-cpe:/a:fedoraproject:fedora:kanagram, p-cpe:/a:fedoraproject:fedora:kate, p-cpe:/a:fedoraproject:fedora:kbruch, p-cpe:/a:fedoraproject:fedora:kcalc, p-cpe:/a:fedoraproject:fedora:kcharselect, p-cpe:/a:fedoraproject:fedora:kcolorchooser, p-cpe:/a:fedoraproject:fedora:kcron, p-cpe:/a:fedoraproject:fedora:kde-base-artwork, p-cpe:/a:fedoraproject:fedora:kde-baseapps, p-cpe:/a:fedoraproject:fedora:kde-l10n, p-cpe:/a:fedoraproject:fedora:kde-print-manager, p-cpe:/a:fedoraproject:fedora:kde-runtime, p-cpe:/a:fedoraproject:fedora:kde-wallpapers, p-cpe:/a:fedoraproject:fedora:kdeaccessibility, p-cpe:/a:fedoraproject:fedora:kdeadmin, p-cpe:/a:fedoraproject:fedora:kdeartwork, p-cpe:/a:fedoraproject:fedora:kdebindings, p-cpe:/a:fedoraproject:fedora:kdeedu, p-cpe:/a:fedoraproject:fedora:kdegraphics, p-cpe:/a:fedoraproject:fedora:kdegraphics-mobipocket, p-cpe:/a:fedoraproject:fedora:kdegraphics-strigi-analyzer, p-cpe:/a:fedoraproject:fedora:kdegraphics-thumbnailers, p-cpe:/a:fedoraproject:fedora:kdelibs, p-cpe:/a:fedoraproject:fedora:kdemultimedia, p-cpe:/a:fedoraproject:fedora:kdenetwork, p-cpe:/a:fedoraproject:fedora:kdenetwork-filesharing, p-cpe:/a:fedoraproject:fedora:kdenetwork-strigi-analyzers, p-cpe:/a:fedoraproject:fedora:kdepim, p-cpe:/a:fedoraproject:fedora:kdepim-runtime, p-cpe:/a:fedoraproject:fedora:kdepimlibs, p-cpe:/a:fedoraproject:fedora:kdeplasma-addons, p-cpe:/a:fedoraproject:fedora:kdetoys, p-cpe:/a:fedoraproject:fedora:kdeutils, p-cpe:/a:fedoraproject:fedora:kdf, p-cpe:/a:fedoraproject:fedora:kdnssd, p-cpe:/a:fedoraproject:fedora:kfilemetadata, p-cpe:/a:fedoraproject:fedora:kfloppy, p-cpe:/a:fedoraproject:fedora:kgamma, p-cpe:/a:fedoraproject:fedora:kgeography, p-cpe:/a:fedoraproject:fedora:kget, p-cpe:/a:fedoraproject:fedora:kgpg, p-cpe:/a:fedoraproject:fedora:khangman, p-cpe:/a:fedoraproject:fedora:kig, p-cpe:/a:fedoraproject:fedora:kimono, p-cpe:/a:fedoraproject:fedora:kiten, p-cpe:/a:fedoraproject:fedora:klettres, p-cpe:/a:fedoraproject:fedora:kmag, p-cpe:/a:fedoraproject:fedora:kmix, p-cpe:/a:fedoraproject:fedora:kmousetool, p-cpe:/a:fedoraproject:fedora:kmouth, p-cpe:/a:fedoraproject:fedora:kmplot, p-cpe:/a:fedoraproject:fedora:kolourpaint, p-cpe:/a:fedoraproject:fedora:konsole, p-cpe:/a:fedoraproject:fedora:kopete, p-cpe:/a:fedoraproject:fedora:kphotoalbum, p-cpe:/a:fedoraproject:fedora:kppp, p-cpe:/a:fedoraproject:fedora:kqtquickcharts, p-cpe:/a:fedoraproject:fedora:krdc, p-cpe:/a:fedoraproject:fedora:kremotecontrol, p-cpe:/a:fedoraproject:fedora:krfb, p-cpe:/a:fedoraproject:fedora:kross-interpreters, p-cpe:/a:fedoraproject:fedora:kruler, p-cpe:/a:fedoraproject:fedora:ksaneplugin, p-cpe:/a:fedoraproject:fedora:kscd, p-cpe:/a:fedoraproject:fedora:ksnapshot, p-cpe:/a:fedoraproject:fedora:kstars, p-cpe:/a:fedoraproject:fedora:ksystemlog, p-cpe:/a:fedoraproject:fedora:kteatime, p-cpe:/a:fedoraproject:fedora:ktimer, p-cpe:/a:fedoraproject:fedora:ktouch, p-cpe:/a:fedoraproject:fedora:kturtle, p-cpe:/a:fedoraproject:fedora:ktux, p-cpe:/a:fedoraproject:fedora:kuser, p-cpe:/a:fedoraproject:fedora:kwalletmanager, p-cpe:/a:fedoraproject:fedora:kwordquiz, p-cpe:/a:fedoraproject:fedora:libkcddb, p-cpe:/a:fedoraproject:fedora:libkcompactdisc, p-cpe:/a:fedoraproject:fedora:libkdcraw, p-cpe:/a:fedoraproject:fedora:libkdeedu, p-cpe:/a:fedoraproject:fedora:libkexiv2, p-cpe:/a:fedoraproject:fedora:libkgapi, p-cpe:/a:fedoraproject:fedora:libkipi, p-cpe:/a:fedoraproject:fedora:libkolab, p-cpe:/a:fedoraproject:fedora:libksane, p-cpe:/a:fedoraproject:fedora:marble, p-cpe:/a:fedoraproject:fedora:nepomuk-core, p-cpe:/a:fedoraproject:fedora:nepomuk-widgets, p-cpe:/a:fedoraproject:fedora:okular, p-cpe:/a:fedoraproject:fedora:oxygen-icon-theme, p-cpe:/a:fedoraproject:fedora:pairs, p-cpe:/a:fedoraproject:fedora:parley, p-cpe:/a:fedoraproject:fedora:pykde4, p-cpe:/a:fedoraproject:fedora:qyoto, p-cpe:/a:fedoraproject:fedora:rocs, p-cpe:/a:fedoraproject:fedora:ruby-korundum, p-cpe:/a:fedoraproject:fedora:ruby-qt, p-cpe:/a:fedoraproject:fedora:smokegen, p-cpe:/a:fedoraproject:fedora:smokekde, p-cpe:/a:fedoraproject:fedora:smokeqt, p-cpe:/a:fedoraproject:fedora:step, p-cpe:/a:fedoraproject:fedora:subsurface, p-cpe:/a:fedoraproject:fedora:superkaramba, p-cpe:/a:fedoraproject:fedora:svgpart, p-cpe:/a:fedoraproject:fedora:sweeper, cpe:/o:fedoraproject:fedora:20

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 9/25/2014

Vulnerability Publication Date: 8/19/2014

Reference Information

CVE: CVE-2014-5033

FEDORA: 2014-11448