UbuntuUpdates.org

Package "qutebrowser"

Name: qutebrowser

Description:

Keyboard-driven, vim-like browser based on PyQt5

Latest version: 1.1.1-1ubuntu0.1
Release: bionic (18.04)
Level: security
Repository: universe
Homepage: https://qutebrowser.org

Links


Download "qutebrowser"


Other versions of "qutebrowser" in Bionic

Repository Area Version
updates universe 1.1.1-1ubuntu0.1

Changelog

Version: 1.1.1-1ubuntu0.1 2018-07-19 04:07:25 UTC

  qutebrowser (1.1.1-1ubuntu0.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Remote code execution due to CSRF on the qute://settings
    page (LP: #1781295):
    - fix-CVE-2018-10895.patch
    - CVE-2018-10895
  * Add a build dependency on dh-python, fixing the FTBFS.

 -- Simon Quigley <email address hidden> Wed, 18 Jul 2018 19:24:09 -0500

1781295 CVE-2018-10895: Possible remote code execution via CSRF in qute://settings
CVE-2018-10895 qutebrowser before version 1.4.1 is vulnerable to a cross-site request forgery flaw that allows websites to access 'qute://*' URLs. A malicious websi



About   -   Send Feedback to @ubuntu_updates