Bug 234635

Summary: CVE-2007-0242 QT UTF8 improper character expansion
Product: [Fedora] Fedora Reporter: Josh Bressers <bressers>
Component: qtAssignee: Than Ngo <than>
Status: CLOSED ERRATA QA Contact: Ben Levenson <benl>
Severity: medium Docs Contact:
Priority: medium    
Version: 6Keywords: Security
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: impact=moderate,source=vendorsec,reported=20070329,public=20070329
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2007-08-29 17:12:47 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 234633    

Description Josh Bressers 2007-03-30 18:39:11 UTC 
+++ This bug was initially created as a clone of Bug #234633 +++

Andreas Nolden reported a flaw in the QT expands certain UTF8 characters.  This
could lead to a XSS attack withing konqueror.  There is also potential for this
flaw to affect other QT applications that attempt to sanitize user supplied
data.  The example supplied by the KDE security team would be the ability to
inject /../ characters into a filename.

-- Additional comment from bressers on 2007-03-30 14:29 EST --
Created an attachment (id=151307)
Patch for kjs


-- Additional comment from bressers on 2007-03-30 14:30 EST --
Created an attachment (id=151310)
Patch for QT 3


-- Additional comment from bressers on 2007-03-30 14:32 EST --
Created an attachment (id=151312)
Patch for QT4
Comment 1 Josh Bressers 2007-03-30 18:40:14 UTC 
This should also affect FC5
Comment 2 Than Ngo 2007-08-29 17:12:47 UTC 
it's fixed in qt-3_3_8-1_fc6_1