Updated kdeconnect-kde packages fix a security vulnerability
Publication date: 13 Nov 2020Modification date: 13 Nov 2020
Type: security
Affected Mageia releases : 7
CVE: CVE-2020-26164
Description
An attacker on your local network could send maliciously crafted packets to other hosts running kdeconnect on the network, causing them to use large amounts of CPU, memory or network connections, which could be used in a Denial of Service attack within the network. (CVE-2020-26164)
References
SRPMS
7/core
- kdeconnect-kde-1.3.4-2.1.mga7