A few moments ago, KDE Neon project leader and long-time KDE developer Jonathan Riddell published a security advisory to inform users of the KDE Neon GNU/Linux distribution about an insecure package archive.According to the security advisory, it would appear that the package archive of the KDE Neon operating system was misconfigured in such a way that it could allow anyone to upload any package to it. Most probably, no one uploaded any package there, but, just in case, the maintainers have emptied the archives and remove all the ISO images.
"Anyone discovering the insecure archive server could have uploaded packages to it which would be installed and run on computers running KDE neon. We do not believe this has happened but would welcome reports of any problems," said Jonathan Riddell. "This does not impact KDE software distributed by any other means."
KDE Neon users are urged to upgr... (read more)
from Softpedia News / Linux http://ift.tt/2g4zlDC
via IFTTT
No comments:
Post a Comment