2
Candidate: CVE-2008-1025
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1025
5
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=479644
7
Cross-site scripting (XSS) vulnerability in Apple WebKit, as used in Safari
8
before 3.1.1, allows remote attackers to inject arbitrary web script or
9
HTML via a crafted URL with a colon in the hostname portion.
12
mdeslaur> this bug doesn't affect qt4-x11 as per debian bug.
15
Discovered-by: Robert Swiecki and David Bloom
19
upstream: http://trac.webkit.org/changeset/31438
20
upstream_webkit: released (3.1.1)
23
gutsy_webkit: needed (reached end-of-life)
24
hardy_webkit: ignored (reached end-of-life)
25
intrepid_webkit: not-affected (1.0.1-2)
26
jaunty_webkit: not-affected (1.0.1-4)
27
karmic_webkit: not-affected (1.0.1-4)
28
lucid_webkit: not-affected (1.0.1-4)
29
maverick_webkit: not-affected (1.0.1-4)
30
natty_webkit: not-affected (1.0.1-4)
31
devel_webkit: not-affected (1.0.1-4)