WebKit in Apple Safari before 4.0.2 does not properly handle numeric
character references, which allows remote attackers to execute
arbitrary code or cause a denial of service (memory corruption and
application crash) via a crafted HTML document.
Bug 279027 - kdelibs
Bug 281819 - webkit-gtk
Bug 281821 - qt-webkit
Created attachment 201549 [details, diff]
Official upstream patch
Presumably all affected versions are gone from tree. Closing as discussed with keytoaster.