Nico Golde wrote:
The code in question is not present in the Debian package, because I have
patched it to use run-mailcap or sensible-browser instead.
[...]
Thanks, that looks secure to me. I missed the patch when
looking at the package because its name does not imply any
security
Source: xdg-utils
Severity: grave
Tags: security patch
Hi,
the following CVE (Common Vulnerabilities Exposures) id was
published for xdg-utils.
CVE-2008-0386[0]:
| Description of problem:
| The generic handler of xdg-open (i.e. when not running in KDE, GNOME or XFCE)
| has the following code:
|
Hi,
Nico Golde wrote:
Source: xdg-utils
Severity: grave
Tags: security patch
Hi,
the following CVE (Common Vulnerabilities Exposures) id was
published for xdg-utils.
The code in question is not present in the Debian package, because I have
patched it to use run-mailcap or
3 matches
Mail list logo