SUMMARY STEPS TO REPRODUCE 1. ls -l $(which plasma-discover) OBSERVED RESULT 452K -rwxr-xr-x 1 root root 450K 25 mag 22.42 /usr/bin/plasma-discover EXPECTED RESULT 452K -rwx------ 1 root root 450K 25 mag 22.42 /usr/bin/plasma-discover SOFTWARE/OS VERSIONS Linux/KDE Plasma: (available in About System) LSB Version: n/a Distributor ID: EndeavourOS Description: EndeavourOS Linux Release: rolling Codename: rolling KDE Plasma Version: plasmashell --version plasmashell 6.0.5 KDE Frameworks Version: Qt Version: qmake --version QMake version 3.1 Using Qt version 5.15.14 in /usr/lib ADDITIONAL INFORMATION Same security problem on Linux Manjaro lsb_release -a LSB Version: n/a Distributor ID: ManjaroLinux Description: Manjaro Linux Release: 24.0.1 Codename: Wynsdey
Why is it a security issue to allow users to run Discover?
Dear Bug Submitter, This bug has been in NEEDSINFO status with no change for at least 15 days. Please provide the requested information as soon as possible and set the bug status as REPORTED. Due to regular bug tracker maintenance, if the bug is still in NEEDSINFO status with no change in 30 days the bug will be closed as RESOLVED > WORKSFORME due to lack of needed information. For more information about our bug triaging procedures please read the wiki located here: https://community.kde.org/Guidelines_and_HOWTOs/Bug_triaging If you have already provided the requested information, please mark the bug as REPORTED so that the KDE team knows that the bug is ready to be confirmed. Thank you for helping us make KDE software even better for everyone!
This bug has been in NEEDSINFO status with no change for at least 30 days. The bug is now closed as RESOLVED > WORKSFORME due to lack of needed information. For more information about our bug triaging procedures please read the wiki located here: https://community.kde.org/Guidelines_and_HOWTOs/Bug_triaging Thank you for helping us make KDE software even better for everyone!