Your message dated Tue, 13 May 2014 14:43:03 +0300
with message-id <[email protected]>
and subject line Re: remote info disclosure via css
has caused the Debian Bug report #560870,
regarding remote info disclosure via css
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
560870: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560870
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
package: webkit
version: 1.1.17-2
severity: serious
tags: security
hi,
it has been disclosed that it is possible for any website to query the
user's site viewing history via css. please see [0]. i have not
personally checked whether this package is vulnerable, but it seems to
be a general css design issue, so all css-supporting browsers are
likely affected. please check, and feel free to close the bug if the
package is not affected. thanks.
mike
--- End Message ---
--- Begin Message ---
On Sat, Dec 12, 2009 at 05:26:22PM -0500, Michael Gilbert wrote:
> it has been disclosed that it is possible for any website to query
> the user's site viewing history via css.
This doesn't seem to affect webkitgtk anymore (tested with
http://ha.ckers.org/weird/CSS-history.cgi), hence I'm closing the bug.
Berto
--- End Message ---
