Debian
kde4libs package

kde4libs 4:4.1.0-3+lenny1 source package in Debian

Changelog

kde4libs (4:4.1.0-3+lenny1) stable-security; urgency=high


  * Non-maintainer upload.
  * Fixed CVE-2009-1687: An integer overflow, leading to heap-based buffer
    overflow was found in the KDE implementation of garbage collector for the
    JavaScript language (KJS).
  * Fixed CVE-2009-1690: KDE HTML parser incorrectly handled content, forming
    the HTML page <head> element. A remote attacker could use this flaw to
    cause a denial of service (konqueror crash) or, potentially, execute
    arbitrary code, with the privileges of the user running "konqueror" web
    browser, if the victim was tricked to open a specially-crafted HTML page.
    (Closes: #534949)
  * Fixed CVE-2009-1698: KDE's Cascading Style Sheets (CSS) parser incorrectly
    handled content, forming the value of CSS "style" attribute. A remote
    attacker could use this flaw to cause a denial of service (konqueror crash)
    or potentially execute arbitrary code with the privileges of the user
    running "konqueror" web browser, if the victim visited a specially-crafted
    CSS equipped HTML page. (Closes: #534949)

 -- Giuseppe Iuculano <email address hidden>  Sun, 09 Aug 2009 14:00:33 +0200

Upload details

Uploaded by:
Debian Qt/KDE Maintainers
Uploaded to:
Lenny
Original maintainer:
Debian Qt/KDE Maintainers
Architectures:
any
Section:
libs
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section
Lenny release main libs

Builds

Downloads

File Size SHA-256 Checksum
kde4libs_4.1.0-3+lenny1.dsc 2.1 KiB 43ac6edb12df738d6c0b7b48d97eba3aff9b6137923708513a84954c4fccf68e
kde4libs_4.1.0.orig.tar.gz 10.7 MiB 6c1a0af094878a639fbab26f3fdeef2ca924e4a88c03a89b5818ae3cd0138a5c
kde4libs_4.1.0-3+lenny1.diff.gz 89.3 KiB 341e25346781e157ad4f07c94cc4d571bdded7617ead2d544881dbc85ee8a705

No changes file available.

Binary packages built by this source