[CentOS] cve-2010-0436 patch for CentOS 5.4

Wed Apr 21 20:18:01 UTC 2010
Olaf Mueller <daily-planet at istari.de>

Ned Slider wrote:

Hello Ned,

> Olaf Mueller wrote:
>> [...] Does anybody knows where to get a
>> cve-2010-0436 patch (kdebase, kdm) for kde-3.5.10?

> Maybe use the same patch Red Hat have backported into the distro
> package as your starting point:
> $ rpm -q --changelog kdebase | more
> * Sun Mar 28 2010 Than Ngo <than at redhat.com> - 6:3.5.4-21.1
> - Resolves: #570622, CVE-2010-0436 kdm privilege escalation flaw
thank you very much. This works great!

$ patch -p0 -b <cve-2010-0436.patch
patching file kdm/backend/ctrl.c


regards
Olaf