[ubuntu/lucid-security] kde4libs_4.4.5-0ubuntu1.2_sparc_translations.tar.gz, kde4libs, kde4libs_4.4.5-0ubuntu1.2_i386_translations.tar.gz, kde4libs_4.4.5-0ubuntu1.2_armel_translations.tar.gz, kde4libs_4.4.5-0ubuntu1.2_powerpc_translations.tar.gz, kde4libs_4.4.5-0ubuntu1.2_ia64_translations.tar.gz, kde4libs_4.4.5-0ubuntu1.2_amd64_translations.tar.gz 4:4.4.5-0ubuntu1.2 (Accepted)

Jamie Strandboge Tue, 25 Oct 2011 15:06:13 -0700

kde4libs (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low

  * SECURITY UPDATE: Fix vulnerabity with certificate boxes in KSSL,
    which let the opportunity to interpret html tags
    - debian/patches/security_04_CVE-2011-3365-kioslave.patch: Use HTML
      escaping on texts that come from the website.
    - CVE-2011-3365
    LP: #857437
  * Fix vulnerability in kioslave which let the opportunity
    to interpret html tags
    - debian/patches/security_04_CVE-2011-3365.diff: Change the QLabel's text
      format from RichText to PlainText in important locations.


Date: Fri, 14 Oct 2011 09:19:01 -0500
Changed-By: Jamie Strandboge <[email protected]>
Maintainer: Kubuntu Developers <[email protected]>
https://launchpad.net/ubuntu/lucid/+source/kde4libs/4:4.4.5-0ubuntu1.2

Format: 1.8
Date: Fri, 14 Oct 2011 09:19:01 -0500
Source: kde4libs
Binary: kdelibs5 kdelibs5-data kdelibs5-dev kdelibs-bin libplasma3 kdelibs5-dbg
Architecture: source
Version: 4:4.4.5-0ubuntu1.2
Distribution: lucid-security
Urgency: low
Maintainer: Kubuntu Developers <[email protected]>
Changed-By: Jamie Strandboge <[email protected]>
Description: 
 kdelibs-bin - executables for all KDE 4 core applications
 kdelibs5   - core libraries for all KDE 4 applications
 kdelibs5-data - core shared data for all KDE 4 applications
 kdelibs5-dbg - debugging symbols for the KDE 4 libraries module
 kdelibs5-dev - development files for the KDE 4 core libraries
 libplasma3 - library for the KDE 4 Plasma desktop
Launchpad-Bugs-Fixed: 857437
Changes: 
 kde4libs (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low
 .
   * SECURITY UPDATE: Fix vulnerabity with certificate boxes in KSSL,
     which let the opportunity to interpret html tags
     - debian/patches/security_04_CVE-2011-3365-kioslave.patch: Use HTML
       escaping on texts that come from the website.
     - CVE-2011-3365
     LP: #857437
   * Fix vulnerability in kioslave which let the opportunity
     to interpret html tags
     - debian/patches/security_04_CVE-2011-3365.diff: Change the QLabel's text
       format from RichText to PlainText in important locations.
Checksums-Sha1: 
 25aa010142a35e5419eb9cbe95a4847e3f7b05c3 3142 kde4libs_4.4.5-0ubuntu1.2.dsc
 63abbfdaf6179a9bba18308c0dff0c1c97ee39b8 108642 
kde4libs_4.4.5-0ubuntu1.2.diff.gz
Checksums-Sha256: 
 775df18c658c81cbe230f937b0325163823af704ed50061f59488e30cfa26a6d 3142 
kde4libs_4.4.5-0ubuntu1.2.dsc
 76a1599f16ce815e41aa278b57fc2dc20c7faa9ddfe6ab44ad1ed552db77b50c 108642 
kde4libs_4.4.5-0ubuntu1.2.diff.gz
Files: 
 a25acadab5a269c57e562fe73ba45746 3142 libs optional 
kde4libs_4.4.5-0ubuntu1.2.dsc
 9f117737dd6277a5257ac706ec31ada0 108642 libs optional 
kde4libs_4.4.5-0ubuntu1.2.diff.gz
Original-Maintainer: Debian Qt/KDE Maintainers <[email protected]>

-- 
Lucid-changes mailing list
[email protected]
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/lucid-changes

Reply via email to