On Wed, 2009-06-17 at 18:48 -0400, Michael S. Gilbert wrote:
> i don't mean to sound rude, but if you wish to close bugs, please do the
> requisite testing and background checking first. i spent the time to
> do a good job before submitting the bug. please respect that by doing a
> thorough job b
reopen 520052
found 520052 1.0.1-4
fixed 520052 1.1.7-1
thanks
yes, i, as the original reporter, spent a non-insignificant amount of
time to determine that webkit is indeed affected. in fact, i believe
that my description in the original report is very complete and
describes the extent of the pro
On Mon, Mar 16, 2009 at 10:28:04PM -0400, Michael Gilbert wrote:
> package: libwebkit-1.0-1
> severity: grave
> tags: security
>
> it has been found that webkit is vulnerable to a cross-site scripting
> vulnerability, see CVE-2008-4723 [1].
>
> note that certain extensions are protected and other
package: libwebkit-1.0-1
severity: grave
tags: security
it has been found that webkit is vulnerable to a cross-site scripting
vulnerability, see CVE-2008-4723 [1].
note that certain extensions are protected and others are not. for
example, the attack does not work for files with the jpg or txt
e
4 matches
Mail list logo
