Date: Fri, 20 Jan 2006 21:58:44 +0000 (UTC) From: Michael Nottebrock <lofi@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/x11/kdelibs3 Makefile ports/x11/kdelibs3/files patch-post-3.4.3-kdelibs-kjs Message-ID: <200601202158.k0KLwiDs012812@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
lofi 2006-01-20 21:58:44 UTC
FreeBSD ports repository
Modified files:
x11/kdelibs3 Makefile
Added files:
x11/kdelibs3/files patch-post-3.4.3-kdelibs-kjs
Log:
Fix an incorrect bounds check in kjs, the JavaScript interpreter engine used
by Konqueror and other parts of KDE, that allowed a heap based buffer over-
flow when decoding specially crafted UTF-8 encoded URI sequencesi.
Possible impact included executing arbitrary code and crashing the web browser.
Security: http://www.kde.org/info/security/advisory-20060119-1.txt
Security: CVE-2006-0019
Revision Changes Path
1.188 +1 -0 ports/x11/kdelibs3/Makefile
1.1 +49 -0 ports/x11/kdelibs3/files/patch-post-3.4.3-kdelibs-kjs (new)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200601202158.k0KLwiDs012812>