CVE-2026-25710

Sažetak

The new upstream added a privileged D-Bus helper called plasmaloginauthhelper, which suffers from multiple issues, e.g.aA compromised plasmalogin service account can chown() arbitrary files in the system.

Reference

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-25710
https://security.opensuse.org/2026/04/27/plasma-login-manager.html#6-upstream-bugfix
http://www.openwall.com/lists/oss-security/2026/04/27/1

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

13-05-2026 - 15:35

Objavljeno

13-05-2026 - 13:01