Bug#479644: libqt4-webkit:CVE-2008-1025 Cross-site scripting (XSS) vulnerability in Apple WebKit
On 5/6/08, Michael Gilbert wrote:
> i believe that this is actually an issue with webkit itself, not the
> libqt4-webkit package (which uses webkit as a library). CVE-2008-1025
> seems to indicate that the issue is wholely within webkit (there is no
> mention of qt).
i am mistaken, it looks like qt4-x11 duplicates the webkit source
code, rather than relying on it as a library, which in my opinion is
certainly not a very good approach. please ignore the previous
message.
Reply to: