lp:ubuntu/breezy-security/kdelibs
- Get this branch:
- bzr branch lp:ubuntu/breezy-security/kdelibs
Branch merges
Branch information
Recent revisions
- 9. By Kees Cook
-
* SECURITY UPDATE: possible XSS via incorrect UTF8 truncation.
* Add kubuntu_97_kjs_ utf8_fixes. diff: upstream fixes.
* References
CVE-2007-0242 - 8. By Kees Cook
-
* SECURITY UPDATE: FTP PASV scanning vulnerability, and JS DoS.
* Add kubuntu_91_ftp_ pasv_scanning. diff
* References
ftp://ftp.kde.org/ pub/kde/ security_ patches/ CVE-2007- 1564-kdelibs- 3.4.3.diff
CVE-2007-1564 - 7. By Kees Cook
-
* SECURITY UPDATE: XSS attacks possible with comment in TITLE tag.
* Add 'debian/patches/ kubuntu_ 90_title_ tokenizer. diff': fix parser,
from upstream Subversion.
* References
CVE-2007-0537 - 6. By Jonathan Riddell
-
* SECURITY UPDATE: fix remote browser crash
* KDE Konqueror allows remote attackers to cause a denial
of service (application crash) by calling the replaceChild method on a
DOM object, which triggers a null dereference, as demonstrated by calling
document.replaceChild with a 0 (zero) argument.
* Add kubuntu_00_CVE- 2006-3672. diff
* References:
http://cve.mitre. org/cgi- bin/cvename. cgi?name= CVE-2006- 3672
http://www.mandriva. com/security/ advisories? name=MDKSA- 2006:130 - 5. By Jonathan Riddell
-
* SECURITY UPDATE: kjs encodeuri/decodeuri heap overflow vulnerability
* Add kubuntu_20_post_ 3.4.3_kdelibs_ kjs.diff
* An incorrect bounds check in kjs, the Javascript interpreter
engine used by Konqueror and other parts of KDE, that allows
a heap based buffer overflow when decoding invalid utf8 encoded
URI sequences.
* References:
CVE-2006-0019
http://www.kde. org/info/ security/ advisory- 20060119- 1.txt - 4. By Jonathan Riddell
-
* New upstream release
* Move 19_debianize_useragent. diff to
kubuntu_19_debianize_ useragent. diff and change string to Kubuntu
* Add kubuntu_08_kdesu_ terminal. diff output to terminal by default
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/kdelibs