[ubuntu/questing-security] kdeconnect 25.08.1-0ubuntu2.1 (Accepted)
Eduardo Barretto
eduardo.barretto at canonical.com
Wed Dec 3 09:04:57 UTC 2025
kdeconnect (25.08.1-0ubuntu2.1) questing-security; urgency=medium
* SECURITY UPDATE: Device spoofing vulnerability. (LP: #2132107)
- debian/patches/CVE-2025-66270.patch: Check that the device ID
doesn't change during the handshake.
- CVE-2025-66270
Date: 2025-12-01 11:23:14.521171+00:00
Changed-By: Rik Mills <rik.mills88 at gmail.com>
Maintainer: Kubuntu Members <kubuntu-devel at lists.ubuntu.com>
Signed-By: Eduardo Barretto <eduardo.barretto at canonical.com>
https://launchpad.net/ubuntu/+source/kdeconnect/25.08.1-0ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list