Ubuntu
kdelibs package

lp:ubuntu/breezy-security/kdelibs

Breezy (5.10)
breezy-security

Created by James Westby on 2010-02-22 and last modified on 2010-02-22

Get this branch:: bzr branch lp:ubuntu/breezy-security/kdelibs

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Development

Recent revisions

9. By Kees Cook on 2007-04-10: * SECURITY UPDATE: possible XSS via incorrect UTF8 truncation.
* Add kubuntu_97_kjs_utf8_fixes.diff: upstream fixes.
* References
CVE-2007-0242
8. By Kees Cook on 2007-03-27: * SECURITY UPDATE: FTP PASV scanning vulnerability, and JS DoS.
* Add kubuntu_91_ftp_pasv_scanning.diff
* References
ftp://ftp.kde.org/pub/kde/security_patches/CVE-2007-1564-kdelibs-3.4.3.diff
CVE-2007-1564
7. By Kees Cook on 2007-02-05: * SECURITY UPDATE: XSS attacks possible with comment in TITLE tag.
* Add 'debian/patches/kubuntu_90_title_tokenizer.diff': fix parser,
from upstream Subversion.
* References
CVE-2007-0537
6. By Jonathan Riddell on 2006-07-21: * SECURITY UPDATE: fix remote browser crash
* KDE Konqueror allows remote attackers to cause a denial
  of service (application crash) by calling the replaceChild method on a
  DOM object, which triggers a null dereference, as demonstrated by calling
  document.replaceChild with a 0 (zero) argument.
* Add kubuntu_00_CVE-2006-3672.diff
* References:
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3672
  http://www.mandriva.com/security/advisories?name=MDKSA-2006:130
5. By Jonathan Riddell on 2006-01-11: * SECURITY UPDATE: kjs encodeuri/decodeuri heap overflow vulnerability
* Add kubuntu_20_post_3.4.3_kdelibs_kjs.diff
* An incorrect bounds check in kjs, the Javascript interpreter
  engine used by Konqueror and other parts of KDE, that allows
  a heap based buffer overflow when decoding invalid utf8 encoded
  URI sequences.
* References:
   CVE-2006-0019
   http://www.kde.org/info/security/advisory-20060119-1.txt
4. By Jonathan Riddell on 2005-10-07: * New upstream release
* Move 19_debianize_useragent.diff to
kubuntu_19_debianize_useragent.diff and change string to Kubuntu
* Add kubuntu_08_kdesu_terminal.diff output to terminal by default
3. By Jonathan Riddell on 2005-09-21: Do not install system.svgz
2. By Jonathan Riddell on 2005-03-24: Move TextEditors from Utilities More to Utilities
1. By Jonathan Riddell on 2005-03-24: Import upstream version 3.4.0

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/lucid/kdelibs

This branch contains Public information

Everyone can see this information.

Subscribers

James Westby

Ubuntukdelibs package