cvs commit: ports/devel/qt4-corelib Makefile ports/devel/qt4-corelib/files patch-utf8-bug-qt4 ports/x11-toolkits/qt33 Makefile ports/x11-toolkits/qt33/files patch-utf8-bug-qt3 ports/x11/kdelibs3 Makefile ports/x11/kdelibs3/files patch-kdelibs-kjs

Michael Nottebrock lofi at FreeBSD.org
Fri Mar 30 18:15:08 UTC 2007


lofi        2007-03-30 18:15:08 UTC

  FreeBSD ports repository

  Modified files:
    devel/qt4-corelib    Makefile 
    x11-toolkits/qt33    Makefile 
    x11/kdelibs3         Makefile 
  Added files:
    devel/qt4-corelib/files patch-utf8-bug-qt4 
    x11-toolkits/qt33/files patch-utf8-bug-qt3 
    x11/kdelibs3/files   patch-kdelibs-kjs 
  Log:
  Fix handling of overlong UTF8 sequences in Qt and kdelibs, which, unpatched,
  introduces XSS vulnerabilities in Konqueror and potentially affect any
  Qt/KDE applications which deal with URLs or paths from untrusted locations.
  
  Security:       CVE-2007-0242
  
  Revision  Changes    Path
  1.6       +2 -1      ports/devel/qt4-corelib/Makefile
  1.1       +132 -0    ports/devel/qt4-corelib/files/patch-utf8-bug-qt4 (new)
  1.208     +1 -0      ports/x11-toolkits/qt33/Makefile
  1.1       +101 -0    ports/x11-toolkits/qt33/files/patch-utf8-bug-qt3 (new)
  1.214     +1 -1      ports/x11/kdelibs3/Makefile
  1.1       +38 -0     ports/x11/kdelibs3/files/patch-kdelibs-kjs (new)


More information about the cvs-ports mailing list