Ubuntu
kde4libs package

Add rev 3bbd4496 from kde4libs trunk

Bug #797849 reported by Rohan Garg
12
This bug affects 1 person
Affects Status Importance Assigned to Milestone
kde4libs (Ubuntu)
Fix Released
Undecided
Unassigned
Natty
Won't Fix
Undecided
Unassigned
Oneiric
Fix Released
Undecided
Unassigned

Bug Description

Hi
A security enhancement commit was made to kde4libs and requires a backport to our oneiric and natty packages, the commit can be seen here : https://projects.kde.org/projects/kde/kdelibs/repository/revisions/3bbd4496bc8a01e80df61763bfd0347e8ba7f09a

A string exception was also granted to this change : http://lists.kde.org/?l=kde-i18n-doc&m=130806148025343&w=2

Test case:
As seen from the KDE Bug report https://bugs.kde.org/show_bug.cgi?id=94867 , if one were to visit :
Visit http://www%2Emicrosoft%2Ecom&item%<email address hidden>/ in konqueror
A warning is going to be displayed.

See original description
Revision history for this message
Rohan Garg (rohangarg) wrote :

debdiff for oneiric

Revision history for this message
Rohan Garg (rohangarg) wrote :

debdiff for natty

Rohan Garg (rohangarg)
description: updated
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package kde4libs - 4:4.6.3-2ubuntu2

---------------
kde4libs (4:4.6.3-2ubuntu2) oneiric; urgency=low

  * Add kubuntu_warn_user.diff to debian/patches (LP: #797849)
    - Show a security warning when a URL includes a bogus username intended
      to fool users into visiting sites they had no intention of visiting.
 -- Rohan Garg <email address hidden> Wed, 15 Jun 2011 15:36:40 +0200

Changed in kde4libs (Ubuntu Oneiric):
status: New → Fix Released
Revision history for this message
Felix Geyer (debfx) wrote :

Uploaded to natty-proposed, waiting for approval.

Changed in kde4libs (Ubuntu Natty):
status: New → Confirmed
Revision history for this message
Martin Pitt (pitti) wrote : Please test proposed package

Accepted kde4libs into natty-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you in advance!

Changed in kde4libs (Ubuntu Natty):
status: Confirmed → Fix Committed
tags: added: verification-needed
Revision history for this message
Rohan Garg (rohangarg) wrote :

Upgrades fine in a clean chroot

Revision history for this message
David Wonderly (david.wonderly) wrote :

Upgrades fine x86 install

tags: added: verification-done
removed: verification-needed
Revision history for this message
David Wonderly (david.wonderly) wrote :

Okay, it failed in Konqueror. Works in Rekonq, Firefox and Chrome.

tags: added: verification-failed
removed: verification-done
Revision history for this message
Rolf Leggewie (r0lf) wrote :

natty has seen the end of its life and is no longer receiving any updates. Marking the natty task for this ticket as "Won't Fix".

Changed in kde4libs (Ubuntu Natty):
status: Fix Committed → Won't Fix
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.