Bug#769632: kde-runtime: CVE-2014-8600: Insufficient Input Validation By IO Slaves and Webkit Part

To: 769632@bugs.debian.org
Cc: carnil@debian.org
Subject: Bug#769632: kde-runtime: CVE-2014-8600: Insufficient Input Validation By IO Slaves and Webkit Part
From: Moritz Mühlenhoff <jmm@inutil.org>
Date: Tue, 9 Dec 2014 22:16:07 +0100
Message-id: <[🔎] 20141209211607.GA23451@pisco.westfalen.local>
Reply-to: Moritz Mühlenhoff <jmm@inutil.org>, 769632@bugs.debian.org
In-reply-to: <20141115072541.31479.36002.reportbug@eldamar.local>
References: <20141115072541.31479.36002.reportbug@eldamar.local>

On Sat, Nov 15, 2014 at 08:25:41AM +0100, Salvatore Bonaccorso wrote:
> Source: kde-runtime
> Version: 4:4.8.4-2
> Severity: normal
> Tags: security upstream patch fixed-upstream
> 
> Hi,
> 
> the following vulnerability was published for kde-runtime.
> 
> CVE-2014-8600[0]:
> Insufficient Input Validation By IO Slaves and Webkit Part
> 
> If you fix the vulnerability please also make sure to include the
> CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

Could you please fix this for jessie?

Cheers,
        Moritz

> 
> For further information see:
> 
> [0] https://security-tracker.debian.org/tracker/CVE-2014-8600
> [1] https://www.kde.org/info/security/advisory-20141113-1.txt
> [2] http://quickgit.kde.org/?p=kde-runtime.git&a=commit&h=d68703900edc8416fbcd2550cd336cbbb76decb9
> 
> Regards,
> Salvatore
> 
>

Reply to:

Prev by Date: Re: Bug#772612: kmail: Sent message opened for editing by default and can be removed from sent by saving
Next by Date: Bug#772722: [okular] Please make reviews list more meaningful
Previous by thread: Processed: reassign 748971 to murrine-themes,libqtgui4
Next by thread: Bug#772722: [okular] Please make reviews list more meaningful
Index(es):
- Date
- Thread