cvs commit: ports/devel/qt4-corelib Makefile
ports/devel/qt4-corelib/files
patch-utf8-bug-qt4 ports/x11-toolkits/qt33 Makefile
ports/x11-toolkits/qt33/files patch-utf8-bug-qt3 ports/x11/kdelibs3
Makefile ports/x11/kdelibs3/files patch-kdelibs-kjs
Michael Nottebrock
lofi at FreeBSD.org
Fri Mar 30 18:15:08 UTC 2007
lofi 2007-03-30 18:15:08 UTC
FreeBSD ports repository
Modified files:
devel/qt4-corelib Makefile
x11-toolkits/qt33 Makefile
x11/kdelibs3 Makefile
Added files:
devel/qt4-corelib/files patch-utf8-bug-qt4
x11-toolkits/qt33/files patch-utf8-bug-qt3
x11/kdelibs3/files patch-kdelibs-kjs
Log:
Fix handling of overlong UTF8 sequences in Qt and kdelibs, which, unpatched,
introduces XSS vulnerabilities in Konqueror and potentially affect any
Qt/KDE applications which deal with URLs or paths from untrusted locations.
Security: CVE-2007-0242
Revision Changes Path
1.6 +2 -1 ports/devel/qt4-corelib/Makefile
1.1 +132 -0 ports/devel/qt4-corelib/files/patch-utf8-bug-qt4 (new)
1.208 +1 -0 ports/x11-toolkits/qt33/Makefile
1.1 +101 -0 ports/x11-toolkits/qt33/files/patch-utf8-bug-qt3 (new)
1.214 +1 -1 ports/x11/kdelibs3/Makefile
1.1 +38 -0 ports/x11/kdelibs3/files/patch-kdelibs-kjs (new)
More information about the cvs-all
mailing list