Ned Slider wrote: Hello Ned, > Olaf Mueller wrote: >> [...] Does anybody knows where to get a >> cve-2010-0436 patch (kdebase, kdm) for kde-3.5.10? > Maybe use the same patch Red Hat have backported into the distro > package as your starting point: > $ rpm -q --changelog kdebase | more > * Sun Mar 28 2010 Than Ngo <than at redhat.com> - 6:3.5.4-21.1 > - Resolves: #570622, CVE-2010-0436 kdm privilege escalation flaw thank you very much. This works great! $ patch -p0 -b <cve-2010-0436.patch patching file kdm/backend/ctrl.c regards Olaf