Download
| Alert*
oval:org.secpod.oval:def:300442
A vulnerability has been found and corrected in kdelibs4: kio/kio/tcpslavebase.cpp in KDE KSSL in kdelibs before 4.6.1 does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL ser ... oval:org.secpod.oval:def:700490 kde4libs: KDE 4 core applications An attacker could send crafted input to Konqueror to view sensitive information. oval:org.secpod.oval:def:1503243 Updated kdelibs packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System base scores, which give detailed severity ratings, are available f ... oval:org.secpod.oval:def:500273 The kdelibs packages provide libraries for the K Desktop Environment . A cross-site scripting flaw was found in the way KHTML, the HTML layout engine used by KDE applications such as the Konqueror web browser, displayed certain error pages. A remote attacker could use this flaw to perform a cross-s ... |