Hello, KDE Security Advisory 20111003-1 has been published and is available at http://www.kde.org/info/security/advisory-20111003-1.txt.
This advisory concerns input validation failures affecting kdelibs and Rekonq, due to using the default QLabel::AutoText behavior to display externally-provided strings. This can be abused to show certificate dialogs with spoofed Common Names (CNs), among other things. The vulnerability and technical information about the exploit were provided by Tim Brown of Nth Dimension. We thank them for their responsible disclosure and cooperative handling of the matter. The relevant CVEs are: CVE-2011-3365 KSSL and CVE-2011-3366 Rekonq For those on binary distribution packages, your packages should already be updated with the necessary patches. Patches have been committed to the kdelibs Git repository in the following commit IDs: 4.6 branch: 9ca2b26f 90607b28 4.7 branch: bd70d4e5 86622e4d frameworks: bd70d4e5 86622e4d (Note: the second commit for each branch above is a fix for kio_http that fixes a similar issue, but with only very minor security implications.) Patches can be retrieved by cloning the kdelibs repository at git://anongit.kde.org/kdelibs.git and running "git show <commit-id>" Patches have been committed to the Rekonq Git repository in the following commit IDs: 85f454fa 526ce56f d1711fff These are three separate, but related patches. Patches can be retrieved by cloning the rekonq repository at git://anongit.kde.org/rekonq.git and running "git show <commit-id>" Qt has also received a patch to warn users about sanitizing their QLabel input: https://qt.gitorious.org/qt/qt/commit/31f7ecbdcdbafbac5bbfa693e4d060757244941b Thanks, Jeff
signature.asc
Description: OpenPGP digital signature
_______________________________________________ kde-announce mailing list [email protected] https://mail.kde.org/mailman/listinfo/kde-announce
