This bug was fixed in the package kconfig - 5.18.0-0ubuntu1.1
--------------- kconfig (5.18.0-0ubuntu1.1) xenial-security; urgency=medium
* SECURITY UPDATE: malicious .desktop files (and others) would execute code (LP: #1839432). - debian/patches/CVE-2019-14744.diff: removes the affected feature as currently 'unused'. - CVE-2019-14744
-- Rik Mills <email address hidden> Fri, 09 Aug 2019 08:29:29 +0100
This bug was fixed in the package kconfig - 5.18.0-0ubuntu1.1
---------------
kconfig (5.18.0-0ubuntu1.1) xenial-security; urgency=medium
* SECURITY UPDATE: malicious .desktop files (and others) would execute patches/ CVE-2019- 14744.diff: removes the affected feature as
code (LP: #1839432).
- debian/
currently 'unused'.
- CVE-2019-14744
-- Rik Mills <email address hidden> Fri, 09 Aug 2019 08:29:29 +0100