CVE-2016-7966

2016-10-0500:00:00

ubuntu.com

7.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.5%

JSON

Through a malicious URL that contained a quote character it was possible to
inject HTML code in KMail’s plaintext viewer. Due to the parser used on the
URL it was not possible to include the equal sign (=) or a space into the
injected HTML, which greatly reduces the available HTML functionality.
Although it is possible to include an HTML comment indicator to hide
content.

Bugs

Notes

Author	Note
mdeslaur	per ScottK: Affected package is kdepimlibs in 12.04 - 15.04 and it looks like both kcoreaddons and messagecomposer in later releases
tsimonq2	An additional part to this was released, therefore we need additional commits on top of the initial fix.

OSVersionArchitecturePackageVersionFilename
ubuntu16.04noarchkcoreaddons< 5.18.0-0ubuntu1.1UNKNOWN
ubuntu16.10noarchkcoreaddons< 5.26.0-0ubuntu2UNKNOWN
ubuntu17.04noarchkcoreaddons< 5.26.0-0ubuntu2UNKNOWN
ubuntu12.04noarchkdepimlibs< 4:4.8.5-0ubuntu0.3UNKNOWN
ubuntu14.04noarchkdepimlibs< 4:4.13.3-0ubuntu0.4UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	16.04	noarch	kcoreaddons	< 5.18.0-0ubuntu1.1	UNKNOWN
ubuntu	16.10	noarch	kcoreaddons	< 5.26.0-0ubuntu2	UNKNOWN
ubuntu	17.04	noarch	kcoreaddons	< 5.26.0-0ubuntu2	UNKNOWN
ubuntu	12.04	noarch	kdepimlibs	< 4:4.8.5-0ubuntu0.3	UNKNOWN
ubuntu	14.04	noarch	kdepimlibs	< 4:4.13.3-0ubuntu0.4	UNKNOWN