RHSA-2009:1128-01 -- Redhat kdelibs
|ID: oval:org.secpod.oval:def:500673||Date: (C)2012-01-31 (M)2017-10-04|
|Class: PATCH||Family: unix|
The kdelibs packages provide libraries for the K Desktop Environment . A flaw was found in the way the KDE CSS parser handled content for the CSS "style" attribute. A remote attacker could create a specially-crafted CSS equipped HTML page, which once visited by an unsuspecting user, could cause a denial of service or, potentially, execute arbitrary code with the privileges of the user running Konqueror. Users should upgrade to these updated packages, which contain a backported patch to correct this issue. The desktop must be restarted for this update to take effect.
|Red Hat Enterprise Linux 3|