Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 199234 Details for
Bug 279187
<=kde-base/kdelibs-4.2.4 Remote code execution (CVE-2009-{1687,1698})
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
patch from upstream svn
kdelibs-4.2.4-CVE-2009-1698.patch (text/plain), 1.56 KB, created by
Robert Förster
on 2009-07-26 16:13:08 UTC
(
hide
)
Description:
patch from upstream svn
Filename:
MIME Type:
Creator:
Robert Förster
Created:
2009-07-26 16:13:08 UTC
Size:
1.56 KB
patch
obsolete
>--- branches/KDE/4.3/kdelibs/khtml/css/css_valueimpl.cpp 2009/07/26 03:39:55 1002474 >+++ branches/KDE/4.3/kdelibs/khtml/css/css_valueimpl.cpp 2009/07/26 03:40:47 1002475 >@@ -1212,7 +1212,9 @@ > text = getValueName(m_value.ident); > break; > case CSSPrimitiveValue::CSS_ATTR: >- // ### >+ text = "attr("; >+ text += DOMString( m_value.string ); >+ text += ")"; > break; > case CSSPrimitiveValue::CSS_COUNTER: > text = "counter("; > >--- branches/KDE/4.3/kdelibs/khtml/css/cssparser.cpp 2009/07/26 03:39:55 1002474 >+++ branches/KDE/4.3/kdelibs/khtml/css/cssparser.cpp 2009/07/26 03:40:47 1002475 >@@ -1513,6 +1513,14 @@ > if ( args->size() != 1) > return false; > Value *a = args->current(); >+ if (a->unit != CSSPrimitiveValue::CSS_IDENT) { >+ isValid=false; >+ break; >+ } >+ if (qString(a->string)[0] == '-') { >+ isValid=false; >+ break; >+ } > parsedValue = new CSSPrimitiveValueImpl(domString(a->string), CSSPrimitiveValue::CSS_ATTR); > } > else >@@ -1565,7 +1573,8 @@ > > CounterImpl *counter = new CounterImpl; > Value *i = args->current(); >-// if (i->unit != CSSPrimitiveValue::CSS_IDENT) goto invalid; >+ if (i->unit != CSSPrimitiveValue::CSS_IDENT) goto invalid; >+ if (qString(i->string)[0] == '-') goto invalid; > counter->m_identifier = domString(i->string); > if (counters) { > i = args->next();
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=199234">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 279187
:
199233
| 199234
