which can leak info, use hash instead

Dan Barrett Sat, 08 Feb 2020 15:30:55 -0800

https://bugs.kde.org/show_bug.cgi?id=317856


Dan Barrett <k...@blazemonger.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |k...@blazemonger.com

--- Comment #3 from Dan Barrett <k...@blazemonger.com> ---
I just noticed this leaky behavior of okular and was about to file a security
bug, but I see someone else already did....

Please, at the very least, okular should "chmod 700
~/.local/share/okular/docdata." Right now, any user on the system can see file
paths in "docdata" by default.

-- 
You are receiving this mail because:
You are watching all bug changes.

[okular] [Bug 317856] [okular] saves opened file metadata in ~/.kde/share/apps/okular/docdata/ which can leak info, use hash instead

Reply via email to