langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Kde | Kde | 3.0 (including) | 3.0 (including) |
| Kde | Kde | 3.0.1 (including) | 3.0.1 (including) |
| Kde | Kde | 3.0.2 (including) | 3.0.2 (including) |
| Kde | Kde | 3.0.3 (including) | 3.0.3 (including) |
| Kde | Kde | 3.0.4 (including) | 3.0.4 (including) |
| Kde | Kde | 3.0.5 (including) | 3.0.5 (including) |
| Kde | Kde | 3.0.5a (including) | 3.0.5a (including) |
| Kde | Kde | 3.1 (including) | 3.1 (including) |
| Kde | Kde | 3.1.1 (including) | 3.1.1 (including) |
| Kde | Kde | 3.1.2 (including) | 3.1.2 (including) |
| Kde | Kde | 3.1.3 (including) | 3.1.3 (including) |
| Kde | Kde | 3.1.4 (including) | 3.1.4 (including) |
| Kde | Kde | 3.1.5 (including) | 3.1.5 (including) |
| Kde | Kde | 3.1_alpha1 (including) | 3.1_alpha1 (including) |
| Kde | Kde | 3.1_beta1 (including) | 3.1_beta1 (including) |
| Kde | Kde | 3.1_beta2 (including) | 3.1_beta2 (including) |
| Kde | Kde | 3.2 (including) | 3.2 (including) |
| Kde | Kde | 3.2.0_beta1 (including) | 3.2.0_beta1 (including) |
| Kde | Kde | 3.2.1 (including) | 3.2.1 (including) |
| Kde | Kde | 3.2.2 (including) | 3.2.2 (including) |
| Kde | Kde | 3.2.3 (including) | 3.2.3 (including) |
| Kde | Kde | 3.3 (including) | 3.3 (including) |
| Kde | Kde | 3.3.1 (including) | 3.3.1 (including) |
| Kde | Kde | 3.3.2 (including) | 3.3.2 (including) |
| Kde | Kde | 3.4 (including) | 3.4 (including) |
| Kde | Kde | 3.4.1 (including) | 3.4.1 (including) |
| Kde | Kde | 3.4.2 (including) | 3.4.2 (including) |