Ben Burton

**Name of the Vulnerable Software and Affected Versions** kdeedu versions 3.0 through 3.4.2 kdeedu-doc-html (affected versions not specified) kdeedu-data (affected versions not specified) libkdeedu1 (affected versions not specified) libkdeedu-dev (affected versions not specified) **Description** The issue involves multiple vulnerabilities in the kdeedu package of the Debian GNU/Linux operating system, which can lead to a breach of protected information integrity. These vulnerabilities can be exploited remotely. Additionally, a specific vulnerability in langen2kvtml, part of KDE 3.0 to 3.4.2, creates insecure temporary files in /tmp with predictable names, allowing local users to overwrite arbitrary files. **Recommendations** For kdeedu versions 3.0 through 3.4.2: Update to a version outside of this range to mitigate the risk. For kdeedu-doc-html: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For kdeedu-data: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For libkdeedu1: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For libkdeedu-dev: At the moment, there is no information about a newer version that contains a fix for this vulnerability.