GCVE - cpe:2.3:o:kde:kde:3.5.9:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:kde:kde:3.5.9:*:*:*:*:*:*:*

part: o version: 3.5.9 update: *

Vendor	Kde (`d8ba08cf-7ec1-5504-a5b9-f8cfa50ca850`)
Product	Kde (`a408b698-7d8a-5093-91eb-ad30be28638d`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2012-4514`	vulnerable	2026-06-03 14:32:19.323043	Details available rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part." Published: 2012-11-11T11:00:00.000Z Updated: 2024-08-06T20:35:09.931Z Open on db.gcve.eu Reference links https://bugs.kde.org/show_bug.cgi?id=271528 http://quickgit.kde.org/index.php?p=kdelibs.git&a=commitdiff&h=65464349951e0df9b5d80c2eb3cc7458d54923ae http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc http://www.openwall.com/lists/oss-security/2012/10/11/11 http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-5698`	not_vulnerable	2026-06-03 14:29:10.657274	Details available HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information. Published: 2008-12-22T15:00:00.000Z Updated: 2024-08-07T11:04:44.062Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/31696 http://secunia.com/advisories/32208 http://www.vupen.com/english/advisories/2008/2915 https://exchange.xforce.ibmcloud.com/vulnerabilities/45804 http://securityreason.com/securityalert/4796	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1671`	vulnerable	2026-06-03 14:28:41.632885	Details available start_kdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" (probably command-line arguments) that cause start_kdeinit to send SIGUSR1 signals to other processes. Published: 2008-04-28T17:00:00.000Z Updated: 2024-08-07T08:32:00.600Z Open on db.gcve.eu Reference links http://secunia.com/advisories/30113 ftp://ftp.kde.org/pub/kde/security_patches/post-kde-3.5.5-kinit.diff http://security.gentoo.org/glsa/glsa-200804-30.xml http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html http://www.securitytracker.com/id?1019924	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.