Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 387141

Summary: www-client/opera Nested SVG Content Processing Code Execution Vulnerability
Product: Gentoo Security Reporter: Agostino Sarubbo <ago>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: normal CC: jer
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://secunia.com/advisories/46375/
Whiteboard: B2 [upstream]
Package list:
Runtime testing required: ---

Description Agostino Sarubbo gentoo-dev 2011-10-14 16:41:20 UTC 
From secunia security advisory at $URL:


Description:
The vulnerability is caused due to an error when processing SVG content nested within a frameset and can be exploited via a specially crafted web page.

Successful exploitation allows execution of arbitrary code.

Solution:
unpatched atm
Comment 1 Agostino Sarubbo gentoo-dev 2011-10-14 21:53:57 UTC 

*** This bug has been marked as a duplicate of bug 387137 ***