86 matches found
Mandriva Security Advisory MDVSA-2009:330 (kdelibs)
The remote host is missing an update to kdelibs announced via advisory MDVSA-2009:330. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...
Ubuntu 8.10 / 9.04 : qt4-x11 vulnerabilities (USN-857-1)
It was discovered that QtWebKit did not properly handle certain SVGPathList data structures. If a user were tricked into viewing a malicious website, an attacker could exploit this to execute arbitrary code with the privileges of the user invoking the program. CVE-2009-0945 Several flaws were...
Ubuntu: Security Advisory (USN-857-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-857-1: Qt vulnerabilities
It was discovered that QtWebKit did not properly handle certain SVGPathList data structures. If a user were tricked into viewing a malicious website, an attacker could exploit this to execute arbitrary code with the privileges of the user invoking the program. CVE-2009-0945 Several flaws were...
Memory corruption
WebKit in Apple Safari before 4.0.2, as used on iPhone OS before 3.1, iPhone OS before 3.1.1 for iPod touch, and other platforms; KHTML in kdelibs in KDE; QtWebKit aka Qt toolkit; and possibly other products do not properly handle numeric character references, which allows remote attackers to...
CVE-2009-1725
CVE-2009-1725 is a vulnerability in WebKit-based rendering used by Apple Safari (and KDE’s khtml/kdelibs, QtWebKit, and related WebKit-powered components) where improper handling of numeric character references can allow remote attackers to cause memory corruption, potentially executing code or c...