Red Hat Bugzilla – Bug 869681
CVE-2012-4514 kdelibs (khtml): NULL pointer dereference when trying to reuse a frame with null part
Last modified: 2016-03-04 06:11:56 EST
A NULL pointer dereference flaw was found in the way HTML implementation of KDE libraries performed processing of HTML pages containing frames with null parts. A remote attacker could provide a specially-crafted web page that, when opened in an application linked against KDE libraries (such as konqueror) would lead to that application crash.
Relevant upstream patch:
This issue did NOT affect the versions of the kdelibs package, as shipped with Red Hat Enterprise Linux 5 and 6.
Not a security flaw. Red Hat Security Response Team does not consider a user-assisted end user application crash (such a konqueror) to be a security issue.
This is now public:
Created kdelibs tracking bugs for this issue
Affects: fedora-all [bug 871541]