Bug#561762: kde4libs: many webkit vulnerabilities
Hi Eckhart,
On Sun, Apr 04, 2010 at 02:34:32AM +0200, Eckhart Wörner wrote:
> > > CVE-2009-1703[25]:
> > > | WebKit in Apple Safari before 4.0 does not prevent references to file:
> > > | URLs within (1) audio and (2) video elements, which allows remote
> > > | attackers to determine the existence of arbitrary files via a crafted
> > > | HTML document.
> >
> > This doesn't affect kde4libs (and even if, the impact is negligable)
>
> Konqueror loads local videos from an http context here.
Since you're writing with a @kde.org address: My mail to security@kde.org
was left unanswered. Do you have a suggestion who to contact instead?
Cheers,
Moritz
Reply to: