On Wed, Apr 28, 2010 at 09:46:44PM +0200, Moritz Muehlenhoff wrote:
> On Sun, Apr 25, 2010 at 11:05:09PM +0200, Eckhart Wörner wrote:
> > Hi Moritz,
> >
> > > Since you're writing with a @kde.org address: My mail to secur...@kde.org
> > > was left unanswered. Do you have a suggestion who to contac
On Sun, Apr 25, 2010 at 11:05:09PM +0200, Eckhart Wörner wrote:
> Hi Moritz,
>
> > Since you're writing with a @kde.org address: My mail to secur...@kde.org
> > was left unanswered. Do you have a suggestion who to contact instead?
>
> secur...@kde.org is the right place and several people have pr
Hi Moritz,
> Since you're writing with a @kde.org address: My mail to secur...@kde.org
> was left unanswered. Do you have a suggestion who to contact instead?
secur...@kde.org is the right place and several people have probably read your
mail, however, there has been some problem in March with a
Hi Eckhart,
On Sun, Apr 04, 2010 at 02:34:32AM +0200, Eckhart Wörner wrote:
> > > CVE-2009-1703[25]:
> > > | WebKit in Apple Safari before 4.0 does not prevent references to file:
> > > | URLs within (1) audio and (2) video elements, which allows remote
> > > | attackers to determine the existence
> > CVE-2009-1703[25]:
> > | WebKit in Apple Safari before 4.0 does not prevent references to file:
> > | URLs within (1) audio and (2) video elements, which allows remote
> > | attackers to determine the existence of arbitrary files via a crafted
> > | HTML document.
>
> This doesn't affect kde4l
Michael Gilbert wrote:
> Package: kde4libs
> Version: 4:4.3.4-1
> Severity: serious
> Tags: security
>
> Hi,
>
> The following CVE (Common Vulnerabilities & Exposures) ids were
> published for webkit. webkit was forked from khtml, so these
> issues very like apply to this package as well. Since
block 561762 by 537931
thanks
The bug report mentions CVE-2009-1692 which has its konqueror/khtml
counterpart at CVE-2009-2537, tracked at http://bugs.debian.org/cgi-
bin/bugreport.cgi?bug=537931
--
To UNSUBSCRIBE, email to debian-qt-kde-requ...@lists.debian.org
with a subject of "unsubscribe
Package: kde4libs
Version: 4:4.3.4-1
Severity: serious
Tags: security
Hi,
The following CVE (Common Vulnerabilities & Exposures) ids were
published for webkit. webkit was forked from khtml, so these
issues very like apply to this package as well. Since there are so
many problems, I have not had
8 matches
Mail list logo
