diff options
author | Eric Hameleers <alien@slackware.com> | 2014-12-22 15:03:24 +0100 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2014-12-22 15:03:24 +0100 |
commit | 270c1ba7053478dbd1c632eea18d6e54d51e4ecc (patch) | |
tree | 4e25b7466faf321a1a1fe7e90ce182afdd5ef9dd /kde/patch/kdelibs/kdelibs.kssl.CVE-2011-3365.patch | |
parent | 290362d91d840ad6feed5b59191a058f5e998d3c (diff) | |
download | ktown-270c1ba7053478dbd1c632eea18d6e54d51e4ecc.tar.gz ktown-270c1ba7053478dbd1c632eea18d6e54d51e4ecc.tar.xz |
KDE 4.7.4 for Slackware 13.37 (06dec2011)4.7.4
Diffstat (limited to 'kde/patch/kdelibs/kdelibs.kssl.CVE-2011-3365.patch')
-rw-r--r-- | kde/patch/kdelibs/kdelibs.kssl.CVE-2011-3365.patch | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/kde/patch/kdelibs/kdelibs.kssl.CVE-2011-3365.patch b/kde/patch/kdelibs/kdelibs.kssl.CVE-2011-3365.patch new file mode 100644 index 0000000..b44b865 --- /dev/null +++ b/kde/patch/kdelibs/kdelibs.kssl.CVE-2011-3365.patch @@ -0,0 +1,24 @@ +commit bd70d4e589711fda9ab07738c46e37eee8376214 +Author: David Faure <faure@kde.org> +Date: Thu Jun 30 23:43:45 2011 +0200 + + Security fix: don't interpret html tags + + Credits to Tim Brown for the find. + +diff --git a/kio/kssl/ksslcertificatebox.cpp b/kio/kssl/ksslcertificatebox.cpp +index 4ffc613..094787a 100644 +--- a/kio/kssl/ksslcertificatebox.cpp ++++ b/kio/kssl/ksslcertificatebox.cpp +@@ -36,6 +36,10 @@ KSslCertificateBox::KSslCertificateBox(QWidget *parent) + d(new KSslCertificateBoxPrivate()) + { + d->ui.setupUi(this); ++ // No fooling us with html tags ++ Q_FOREACH(QLabel* label, qFindChildren<QLabel *>(this)) { ++ label->setTextFormat(Qt::PlainText); ++ } + } + + + |