Bug#417390: marked as done (CVE-2007-0242, Qt UTF-8 overlong sequence decoding vulnerability)
Your message dated Mon, 2 Apr 2007 16:32:26 +0100
with message-id <20070402153226.GA17096@pryan.sytes.net>
and subject line Bug#417390: CVE-2007-0242, Qt UTF-8 overlong sequence decoding vulnerability
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: qt-x11-free
Version: 3:3.3.7-3
Severity: grave
Tags: security
Justification: user security hole
> this is a notice about a significant bug in the Qt (3.x and 4.x) UTF 8
> decoder, that in certain cases can lead to security vulnerabilies. It causes
> XSS errors at least in Konqueror, though any KDE application that deals with
> urls or paths from untrusted locations can be affected.
>
> The issue is that the UTF8 decoder incorrectly does not reject overlong
> sequences, which can cause "/../" injection or (in the case of konqueror)
> a "<script>" tag injection.
>
> The patch was embargoed, but it leaked recently into the qt snapshots and was
> also imported into qt-copy, so you can consider it public now. Originally
> Trolltech planned to disclose this with an Qt 3.3.9 release, but it seems
> they changed their mind.
This issued has been addressed in the upload 3:3.3.7-4.
Ana
--- End Message ---
--- Begin Message ---
Version: 3:3.3.7-4
On Mon, Apr 02, 2007 at 04:15:05PM +0100, Ana Guerrero wrote:
> This issued has been addressed in the upload 3:3.3.7-4.
>
>
>
>
--- End Message ---
Reply to: