Date: Fri, 30 Mar 2007 18:15:08 +0000 (UTC) From: Michael Nottebrock <lofi@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/devel/qt4-corelib Makefile ports/devel/qt4-corelib/files patch-utf8-bug-qt4 ports/x11-toolkits/qt33 Makefile ports/x11-toolkits/qt33/files patch-utf8-bug-qt3 ports/x11/kdelibs3 Makefile ports/x11/kdelibs3/files patch-kdelibs-kjs Message-ID: <200703301815.l2UIF8Hi062102@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
lofi 2007-03-30 18:15:08 UTC FreeBSD ports repository Modified files: devel/qt4-corelib Makefile x11-toolkits/qt33 Makefile x11/kdelibs3 Makefile Added files: devel/qt4-corelib/files patch-utf8-bug-qt4 x11-toolkits/qt33/files patch-utf8-bug-qt3 x11/kdelibs3/files patch-kdelibs-kjs Log: Fix handling of overlong UTF8 sequences in Qt and kdelibs, which, unpatched, introduces XSS vulnerabilities in Konqueror and potentially affect any Qt/KDE applications which deal with URLs or paths from untrusted locations. Security: CVE-2007-0242 Revision Changes Path 1.6 +2 -1 ports/devel/qt4-corelib/Makefile 1.1 +132 -0 ports/devel/qt4-corelib/files/patch-utf8-bug-qt4 (new) 1.208 +1 -0 ports/x11-toolkits/qt33/Makefile 1.1 +101 -0 ports/x11-toolkits/qt33/files/patch-utf8-bug-qt3 (new) 1.214 +1 -1 ports/x11/kdelibs3/Makefile 1.1 +38 -0 ports/x11/kdelibs3/files/patch-kdelibs-kjs (new)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200703301815.l2UIF8Hi062102>