Launchpad.net

CVE 2016-7966

Through a malicious URL that contained a quote character it was possible to inject HTML code in KMail's plaintext viewer. Due to the parser used on the URL it was not possible to include the equal sign (=) or a space into the injected HTML, which greatly reduces the available HTML functionality. Although it is possible to include an HTML comment indicator to hide content.

Related bugs and status

CVE-2016-7966 (Candidate) is related to these bugs:

Bug #1630700: [CVE] KMail - HTML injection in plain text viewer

		In	Importance	Status
1630700	[CVE] KMail - HTML injection in plain text viewer	kcoreaddons (Ubuntu)	High	Fix Released
1630700	[CVE] KMail - HTML injection in plain text viewer	kcoreaddons (Ubuntu Yakkety)	High	Fix Released
1630700	[CVE] KMail - HTML injection in plain text viewer	kcoreaddons (Ubuntu Xenial)	High	Fix Released
1630700	[CVE] KMail - HTML injection in plain text viewer	kcoreaddons (Ubuntu Precise)	High	Invalid
1630700	[CVE] KMail - HTML injection in plain text viewer	kcoreaddons (Ubuntu Trusty)	High	Fix Released
1630700	[CVE] KMail - HTML injection in plain text viewer	kdepimlibs (Ubuntu)	Undecided	Fix Released
1630700	[CVE] KMail - HTML injection in plain text viewer	kdepimlibs (Ubuntu Trusty)	Undecided	Fix Released

Bug #1631237: KMail: HTML injection in plain text viewer

		In	Importance	Status
1631237	KMail: HTML injection in plain text viewer	kdepimlibs (Ubuntu)	High	Invalid
1631237	KMail: HTML injection in plain text viewer	kdepimlibs (Ubuntu Precise)	High	Fix Released
1631237	KMail: HTML injection in plain text viewer	kdepimlibs (Ubuntu Yakkety)	High	Fix Released
1631237	KMail: HTML injection in plain text viewer	kdepimlibs (Ubuntu Xenial)	High	Invalid
1631237	KMail: HTML injection in plain text viewer	kdepimlibs (Ubuntu Trusty)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2016-7966

Related bugs and status

Related bugs

References