CVE-2010-2536 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2536): Multiple cross-site scripting (XSS) vulnerabilities in rekonq 0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) a URL associated with a nonexistent domain name, related to webpage.cpp, aka a "universal XSS" issue; (2) unspecified vectors related to webview.cpp; and the about: views for (3) favorites, (4) bookmarks, (5) closed tabs, and (6) history.
I've added in tree www-client/rekonq-0.5-r1 which has a patch that fixes this security issue. The patch is taken from the upstream bug [1], I've contacted upstream and they said that this patch is sufficient [1] https://bugs.kde.org/show_bug.cgi?id=217464
Thank you! Closing noglsa, as there never was a stable version.