Branches for Jaunty

Name Status Last Modified Last Commit
lp:ubuntu/jaunty/kde4libs 2 Mature 2010-02-21 01:35:53 UTC 2010-02-21
125. Fix kubuntu_56_langpacks_desktop_file...

Author: Jonathan Riddell
Revision Date: 2009-04-15 01:20:06 UTC

Fix kubuntu_56_langpacks_desktop_files.diff so it uses the stock
translation files, closes LP: #355814

lp:ubuntu/jaunty-backports/kde4libs bug 2 Mature 2010-02-21 01:38:25 UTC 2010-02-21
128. [ Jamie Strandboge ] * SECURITY UPDAT...

Author: Scott Kitterman
Revision Date: 2010-01-03 19:04:00 UTC

[ Jamie Strandboge ]
* SECURITY UPDATE: fix buffer overflow when converting string to float
  - debian/patches/CVE-2009-0689.diff: adjust Kmax to handle large field
    numbers in kjs/dtoa.cpp
  - CVE-2009-0689

[ Jonathan Riddell ]
* SECURITY UPDATE: uncontrolled XMLHTTPRequest vulnerability
  - Ark and KMail performs insufficient validation which leads to
    specially crafted archive files, using unknown MIME types, to be
    rendered using a KHTML instance, this can trigger uncontrolled
    XMLHTTPRequests to remote sites
  - Add debian/patches/security_02_XMLHttpRequest_vulnerability.diff,
    restricts xmlhttprequest to http protocols only
  - http://www.kde.org/info/security/advisory-20091027-1.txt
  - oCert: #2009-015 http://www.ocert.org/advisories/ocert-2009-015.html
  - CVE-2009-XXXX

[ Scott Kitterman ]
* Update Jaunty backport (LP: #502761)

lp:ubuntu/jaunty-security/kde4libs 2 Mature 2010-02-21 01:36:04 UTC 2010-02-21
128. [ Jamie Strandboge ] * SECURITY UPDAT...

Author: Jamie Strandboge
Revision Date: 2009-12-07 15:25:55 UTC

[ Jamie Strandboge ]
* SECURITY UPDATE: fix buffer overflow when converting string to float
  - debian/patches/CVE-2009-0689.diff: adjust Kmax to handle large field
    numbers in kjs/dtoa.cpp
  - CVE-2009-0689

[ Jonathan Riddell ]
* SECURITY UPDATE: uncontrolled XMLHTTPRequest vulnerability
  - Ark and KMail performs insufficient validation which leads to
    specially crafted archive files, using unknown MIME types, to be
    rendered using a KHTML instance, this can trigger uncontrolled
    XMLHTTPRequests to remote sites
  - Add debian/patches/security_02_XMLHttpRequest_vulnerability.diff,
    restricts xmlhttprequest to http protocols only
  - http://www.kde.org/info/security/advisory-20091027-1.txt
  - oCert: #2009-015 http://www.ocert.org/advisories/ocert-2009-015.html
  - CVE-2009-XXXX

lp:ubuntu/jaunty-updates/kde4libs 2 Mature 2010-02-21 01:36:22 UTC 2010-02-21
128. [ Jamie Strandboge ] * SECURITY UPDAT...

Author: Jamie Strandboge
Revision Date: 2009-12-07 15:25:55 UTC

[ Jamie Strandboge ]
* SECURITY UPDATE: fix buffer overflow when converting string to float
  - debian/patches/CVE-2009-0689.diff: adjust Kmax to handle large field
    numbers in kjs/dtoa.cpp
  - CVE-2009-0689

[ Jonathan Riddell ]
* SECURITY UPDATE: uncontrolled XMLHTTPRequest vulnerability
  - Ark and KMail performs insufficient validation which leads to
    specially crafted archive files, using unknown MIME types, to be
    rendered using a KHTML instance, this can trigger uncontrolled
    XMLHTTPRequests to remote sites
  - Add debian/patches/security_02_XMLHttpRequest_vulnerability.diff,
    restricts xmlhttprequest to http protocols only
  - http://www.kde.org/info/security/advisory-20091027-1.txt
  - oCert: #2009-015 http://www.ocert.org/advisories/ocert-2009-015.html
  - CVE-2009-XXXX

14 of 4 results