Bug#415861: CVE-2007-0537: khtml/konqueror title XSS vulnerability

To: Debian BTS submission <submit@bugs.debian.org>
Subject: Bug#415861: CVE-2007-0537: khtml/konqueror title XSS vulnerability
From: Laurent Bonnaud <Laurent.Bonnaud@inpg.fr>
Date: Thu, 22 Mar 2007 18:26:53 +0100
Message-id: <[🔎] 1174584413.7039.33.camel@localhost>
Reply-to: Laurent Bonnaud <Laurent.Bonnaud@inpg.fr>, 415861@bugs.debian.org

Package: konqueror
Version: 4:3.5.6.dfsg.1-2
Severity: grave
Tags: security
Justification: user security hole


Hi,

here is the problem:

http://www.kde.org/info/security/advisory-20070206-1.txt

The problem is also probably present in the KDE versions in sid and
etch.

-- System Information:
Debian Release: 4.0
  APT prefers unstable
  APT policy: (100, 'unstable'), (99, 'experimental')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.20-1-686
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)

-- 
Laurent Bonnaud.
http://www.lis.inpg.fr/pages_perso/bonnaud/

Reply to:

Follow-Ups:
- Bug#415861: CVE-2007-0537: khtml/konqueror title XSS vulnerability
  - From: Sune Vuorela <debian@pusling.com>

Prev by Date: Bug#397410: very frequent kontact crashes in 3.5.5-1
Next by Date: Bug#380688: Still see the problem
Previous by thread: Bug#397410: very frequent kontact crashes in 3.5.5-1
Next by thread: Bug#415861: CVE-2007-0537: khtml/konqueror title XSS vulnerability
Index(es):
- Date
- Thread