5 matches found
Fedora Core 3 : kdelibs-3.3.1-2.9.FC3 (2005-245)
Wed Mar 23 2005 Than Ngo 6:3.3.1-2.9.FC3 - Applied patch to fix konqueror international domain name spoofing, CVE-2005-0237, 147405 - get rid of broken AltiVec instructions on ppc - Wed Mar 2 2005 Than Ngo 6:3.3.1-2.8.FC3 - Applied patch to fix DCOP DoS, CVE-2005-0396, 150092 thanks KDE security...
CVE-2005-0237
The International Domain Name IDN support in Konqueror 3.2.1 on KDE 3.2.1 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing...
[Full-disclosure] SUSE Security Announcement: various KDE security problems (SUSE-SA:2005:022)
-----BEGIN PGP SIGNED MESSAGE----- SUSE Security Announcement Package: kdelibs3 Announcement-ID: SUSE-SA:2005:022 Date: Mon, 11 Apr 2005 15:00:00 +0000 Affected products: 9.1, 9.2, 9.3 SUSE Linux Enterprise Server 9 Novell Linux Desktop 9 Vulnerability Type: remote code execution local denial of...
RHEL 4 : kdelibs (RHSA-2005:325)
The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2005:325 advisory. The kdelibs package provides libraries for the K Desktop Environment. The International Domain Name IDN support in the Konqueror browser...
CVE-2005-0237
The CVE-2005-0237 issue affects Konqueror 3.2.1 (KDE 3.2.1): IDN support allows spoofing of domain names using punycode/homograph characters in URLs and SSL certificates, enabling phishing. Mitigation is to install the KDE/kdelibs3 security updates referenced by multiple advisories (e.g., SUSE-SA...