This bug was fixed in the package kde4libs - 4:4.14.22-0ubuntu2.1
---
kde4libs (4:4.14.22-0ubuntu2.1) yakkety-security; urgency=medium
* SECURITY UPDATE:Information Leak when accessing https when using a
malicious PAC file
-
This bug was fixed in the package ktnef - 4:16.04.3-0ubuntu1.1
---
ktnef (4:16.04.3-0ubuntu1.1) yakkety-security; urgency=medium
* SECURITY UPDATE: Malicious writes during directory traversal.
- debian/patches/directory-traversal.patch
- Thanks to Eric Sesterhenn for
debdiff for kde4libs in xenial is attached.
** Attachment added: "kde4libs-xenial-debdiff"
https://bugs.launchpad.net/ubuntu/+source/kio/+bug/1668871/+attachment/4829903/+files/kde4libs-xenial-debdiff
** Changed in: kio (Ubuntu Xenial)
Status: New => Confirmed
** Changed in: kde4libs
debdiff for kio in xenial is attached.
** Attachment added: "kio-xenial-debdiff"
https://bugs.launchpad.net/ubuntu/+source/kio/+bug/1668871/+attachment/4829901/+files/kio-xenial-debdiff
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to
ACK on the debdiffs in comments #9 and #10. Packages are building with a
changelog whitespace and pocket change and will be released as security
updates. Thanks!
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
** Changed in: kde4libs (Ubuntu Zesty)
Status: New => Confirmed
** Changed in: kio (Ubuntu Zesty)
Status: New => Confirmed
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
This bug was fixed in the package kio - 5.18.0-0ubuntu1.1
---
kio (5.18.0-0ubuntu1.1) xenial-security; urgency=medium
* SECURITY UPDATE:Information Leak when accessing https when using a
malicious PAC file
- debian/patches/kio-sanitize-url-to-FindProxyForURL.patch
-
*** This bug is a duplicate of bug 148 ***
https://bugs.launchpad.net/bugs/148
Thank you for taking the time to report this crash and helping to make
this software better. This particular crash has already been reported
and is a duplicate of bug #148, so is being marked as such.
This bug was fixed in the package kde4libs - 4:4.14.16-0ubuntu3.1
---
kde4libs (4:4.14.16-0ubuntu3.1) xenial-security; urgency=medium
* SECURITY UPDATE:Information Leak when accessing https when using a
malicious PAC file
-
debdiff for ktnef in xenial is attached.
kdepim also needs to patched both in xenial and trusty.
** Attachment added: "ktnef-xenial-debdiff"
https://bugs.launchpad.net/ubuntu/+source/ktnef/+bug/1668552/+attachment/4829858/+files/ktnef-xenial-debdiff
--
You received this bug notification
10 matches
Mail list logo