CVE-2010-0436

N/A Unknown

Published: April 15, 2010 Modified: April 29, 2026

Description

Race condition in backend/ctrl.c in KDM in KDE Software Compilation (SC) 2.2.0 through 4.4.2 allows local users to change the permissions of arbitrary files, and consequently gain privileges, by blocking the removal of a certain directory that contains a control socket, related to improper interaction with ksm.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

ftp://ftp.kde.org/pub/kde/security_patches/kdebase-workspace-4.3.5-CVE-2010-0436.diff

Source: secalert@redhat.com

Patch

http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039533.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00002.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2010-0348.html

Source: secalert@redhat.com

http://secunia.com/advisories/39419

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/39481

Source: secalert@redhat.com

http://secunia.com/advisories/39506

Source: secalert@redhat.com

http://www.debian.org/security/2010/dsa-2037

Source: secalert@redhat.com

http://www.kde.org/info/security/advisory-20100413-1.txt

Source: secalert@redhat.com

Vendor Advisory

http://www.securityfocus.com/bid/39467

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2010/0879

Source: secalert@redhat.com

Patch Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=570613

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/57823

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9999

Source: secalert@redhat.com

ftp://ftp.kde.org/pub/kde/security_patches/kdebase-workspace-4.3.5-CVE-2010-0436.diff

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039533.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00002.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2010-0348.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/39419

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/39481

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/39506

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2010/dsa-2037

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kde.org/info/security/advisory-20100413-1.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/39467

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2010/0879

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=570613

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/57823

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9999

Source: af854a3a-2127-422b-91ae-364da2661108

28 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.0%

7th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-362

Affected Vendors

kde

Related CVEs

CVE-2026-4827 N/A

CVE-2026-45218 7.7

CVE-2026-45215 5.3

CVE-2026-45214 8.5

CVE-2026-45213 7.6