Summary: | <www-client/opera-10.11: Data URIs can be used to allow cross-site scripting (CVE-2010-2665) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Jeroen Roovers (RETIRED) <jer> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.opera.com/support/kb/view/955/ | ||
Whiteboard: | B3 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Jeroen Roovers (RETIRED)
2010-06-23 11:02:23 UTC
x86 stable amd64 stable, ppc doesn't seem to have 10.1[10] keyworded btw Correct. There is no Qt3 left to support PPC. GLSA Vote: yes. We have an opera GLSA pending, it will be added there. This issue was resolved and addressed in GLSA 201206-03 at http://security.gentoo.org/glsa/glsa-201206-03.xml by GLSA coordinator Sean Amoss (ackle). |