Roland Tapken discovered that insufficient input sanitising in KMail’s
plain text viewer allowed the injection of HTML code.
For the stable distribution (jessie), this problem has been fixed in
version 4:4.14.2-2+deb8u2.
We recommend that you upgrade your kdepimlibs packages.
CPE | Name | Operator | Version |
---|---|---|---|
kdepimlibs | eq | 4:4.14.2-2 | |
kdepimlibs | eq | 4:4.14.2-2+deb8u1 |