CVE-2012-4512

Name of the Vulnerable Software and Affected Versions kdelibs versions 4.3.4 kdelibs-devel version 4.3.4 kdelibs-debuginfo version 4.3.4 kdelibs-apidocs version 4.3.4 kdelibs-common version 4.3.4

Description The issue concerns multiple vulnerabilities in the kdelibs package, which can lead to a disruption of confidentiality and availability of protected information. These vulnerabilities can be exploited remotely. The CSS parser in Konqueror is also affected, allowing remote attackers to cause a denial of service and possibly read memory via a crafted font face source, related to type confusion.

Recommendations For kdelibs version 4.3.4, consider updating to a newer version to mitigate the risk. For kdelibs-devel version 4.3.4, consider updating to a newer version to mitigate the risk. For kdelibs-debuginfo version 4.3.4, consider updating to a newer version to mitigate the risk. For kdelibs-apidocs version 4.3.4, consider updating to a newer version to mitigate the risk. For kdelibs-common version 4.3.4, consider updating to a newer version to mitigate the risk. As a temporary workaround, consider restricting access to the CSS parser in Konqueror to minimize the risk of exploitation.