Synopsis:          Important: kdelibs security update
Advisory ID:       SLSA-2017:1264-1
Issue Date:        2017-05-22
CVE Numbers:       CVE-2017-8422
--

Security Fix(es):

* A privilege escalation flaw was found in the way kdelibs handled D-Bus
messages. A local user could potentially use this flaw to gain root
privileges by spoofing a callerID and leveraging a privileged helper
application. (CVE-2017-8422)
--

SL7
  x86_64
    kdelibs-4.14.8-6.el7_3.i686.rpm
    kdelibs-4.14.8-6.el7_3.x86_64.rpm
    kdelibs-common-4.14.8-6.el7_3.x86_64.rpm
    kdelibs-debuginfo-4.14.8-6.el7_3.i686.rpm
    kdelibs-debuginfo-4.14.8-6.el7_3.x86_64.rpm
    kdelibs-ktexteditor-4.14.8-6.el7_3.i686.rpm
    kdelibs-ktexteditor-4.14.8-6.el7_3.x86_64.rpm
    kdelibs-devel-4.14.8-6.el7_3.i686.rpm
    kdelibs-devel-4.14.8-6.el7_3.x86_64.rpm
  noarch
    kdelibs-apidocs-4.14.8-6.el7_3.noarch.rpm

- Scientific Linux Development Team