langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.
| Software | From | Fixed in |
|---|---|---|
| kde / kde | 3.0 | 3.0.x |
| kde / kde | 3.0.1 | 3.0.1.x |
| kde / kde | 3.0.2 | 3.0.2.x |
| kde / kde | 3.0.3 | 3.0.3.x |
| kde / kde | 3.0.4 | 3.0.4.x |
| kde / kde | 3.0.5 | 3.0.5.x |
| kde / kde | 3.0.5a | 3.0.5a.x |
| kde / kde | 3.1 | 3.1.x |
| kde / kde | 3.1_alpha1 | 3.1_alpha1.x |
| kde / kde | 3.1_beta1 | 3.1_beta1.x |
| kde / kde | 3.1_beta2 | 3.1_beta2.x |
| kde / kde | 3.1.1 | 3.1.1.x |
| kde / kde | 3.1.2 | 3.1.2.x |
| kde / kde | 3.1.3 | 3.1.3.x |
| kde / kde | 3.1.4 | 3.1.4.x |
| kde / kde | 3.1.5 | 3.1.5.x |
| kde / kde | 3.2 | 3.2.x |
| kde / kde | 3.2.0_beta1 | 3.2.0_beta1.x |
| kde / kde | 3.2.1 | 3.2.1.x |
| kde / kde | 3.2.2 | 3.2.2.x |
| kde / kde | 3.2.3 | 3.2.3.x |
| kde / kde | 3.3 | 3.3.x |
| kde / kde | 3.3.1 | 3.3.1.x |
| kde / kde | 3.3.2 | 3.3.2.x |
| kde / kde | 3.4 | 3.4.x |
| kde / kde | 3.4.1 | 3.4.1.x |
| kde / kde | 3.4.2 | 3.4.2.x |