-
Committer:
Package Import Robot
-
Author(s):
Jamie Strandboge
-
Date:
2011-10-14 09:19:01 UTC
-
Revision ID:
package-import@ubuntu.com-20111014091901-oaa07kb9w31557x1
Tags: 4:4.4.5-0ubuntu1.2
* SECURITY UPDATE: Fix vulnerabity with certificate boxes in KSSL,
which let the opportunity to interpret html tags
- debian/patches/security_04_CVE-2011-3365-kioslave.patch: Use HTML
escaping on texts that come from the website.
- CVE-2011-3365
LP: #857437
* Fix vulnerability in kioslave which let the opportunity
to interpret html tags
- debian/patches/security_04_CVE-2011-3365.diff: Change the QLabel's text
format from RichText to PlainText in important locations.