Bug#1069574: age-old and insecure webkit package

To: Dmitry Shachnev <mitya57@debian.org>, 1069574@bugs.debian.org
Subject: Bug#1069574: age-old and insecure webkit package
From: Hadmut Danisch <hadmut@danisch.de>
Date: Sun, 21 Apr 2024 20:25:23 +0300
Message-id: <[🔎] d957b800-f74e-4ba5-8020-a8bc776b78c4@danisch.de>
Reply-to: Hadmut Danisch <hadmut@danisch.de>, 1069574@bugs.debian.org
In-reply-to: <[🔎] ZiVKrL6Te-BFkBgN@mitya57.me>
References: <[🔎] 97426d46-80c4-417a-b464-aa9ceb567cba@danisch.de> <[🔎] ZiVKrL6Te-BFkBgN@mitya57.me> <[🔎] 97426d46-80c4-417a-b464-aa9ceb567cba@danisch.de>

Hi Dmitry,

even their own website

says:

Do not use wkhtmltopdf with any untrusted HTML – be sure to sanitize any user-supplied HTML/JS, otherwise it can lead to complete takeover of the server it is running on! Please consider using a Mandatory Access Control system like AppArmor or SELinux, see recommended AppArmor policy.

Wouldn't it be more than enough or a reason to throw this out of debian/ubuntu, until they fixed this?

regards

Hadmut

Reply to:

Follow-Ups:
- Bug#1069574: age-old and insecure webkit package
  - From: Dmitry Shachnev <mitya57@debian.org>

References:
- Bug#1069574: age-old and insecure webkit package
  - From: Hadmut Danisch <hadmut@danisch.de>
- Bug#1069574: age-old and insecure webkit package
  - From: Dmitry Shachnev <mitya57@debian.org>

Prev by Date: Bug#1069574: age-old and insecure webkit package
Next by Date: Bug#1069574: age-old and insecure webkit package
Previous by thread: Bug#1069574: age-old and insecure webkit package
Next by thread: Bug#1069574: age-old and insecure webkit package
Index(es):
- Date
- Thread