[Bug 1668871] Re: kio: Information Leak when accessing https when using a malicious PAC file

Launchpad Bug Tracker Thu, 02 Mar 2017 11:31:39 -0800

This bug was fixed in the package kio - 5.18.0-0ubuntu1.1

---------------
kio (5.18.0-0ubuntu1.1) xenial-security; urgency=medium


  * SECURITY UPDATE:Information Leak when accessing https when using a
    malicious PAC file
    - debian/patches/kio-sanitize-url-to-FindProxyForURL.patch
    - Thanks to Safebreach Labs researchers Itzik Kotler, Yonatan Fridburg
      and Amit Klein for reporting this issue, Albert Astals Cid for fixing
      this issue.
    - No CVE number.
    - fixes (LP: #1668871)

 -- vis...@vishnunaini.com (v.naini)  Thu, 02 Mar 2017 21:17:20 +0530

** Changed in: kio (Ubuntu Xenial)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/1668871

Title:
  kio: Information Leak when accessing https when using a malicious PAC
  file

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kde4libs/+bug/1668871/+subscriptions

-- 
kubuntu-bugs mailing list
kubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs

[Bug 1668871] Re: kio: Information Leak when accessing https when using a malicious PAC file

Reply via email to