Summary: | <kde-apps/messagelib-16.08.2 - JavaScript execution in HTML Mails (CVE-2016-7968) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Michael Palimaka (kensington) <kensington> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | kde |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.kde.org/info/security/advisory-20161006-3.txt | ||
Whiteboard: | B2 [noglsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 596214 |
Description
Michael Palimaka (kensington)
2016-10-05 10:44:14 UTC
It's going to be difficult to backport the fix for this cleanly, so I will wait for 16.08.2 which is due in a few days (note that this package is currently masked). Fixed version is in the tree and old one removed. No stabilisation is required as this package has never yet been stabilised. |