UbuntuUpdates.org

Package "libkutils4"

Name: libkutils4

Description:

dummy transitional library

Latest version: 4:4.8.5-0ubuntu0.6
Release: precise (12.04)
Level: updates
Repository: main
Head package: kde4libs
Homepage: http://www.kde.org/

Links


Download "libkutils4"


Other versions of "libkutils4" in Precise

Repository Area Version
base main 4:4.8.2-0ubuntu1
security main 4:4.8.5-0ubuntu0.6
PPA: Kubuntu-ppa Beta 4:4.11.97-0ubuntu1~ubuntu12.04~ppa3
PPA: Kubuntu-ppa Backports 4:4.14.2-0ubuntu1~ubuntu12.04~ppa1

Changelog

Version: 4:4.8.5-0ubuntu0.6 2017-03-09 15:06:59 UTC

  kde4libs (4:4.8.5-0ubuntu0.6) precise-security; urgency=medium

  * SECURITY UPDATE: information leak via crafted PAC file (LP: #1668871)
    - debian/patches/CVE-2017-6410.patch: sanitize URLs in
      kio/misc/kpac/script.cpp.
    - CVE-2017-6410

 -- Marc Deslauriers <email address hidden> Wed, 08 Mar 2017 10:28:36 -0500

Source diff to previous version
1668871 kio: Information Leak when accessing https when using a malicious PAC file
CVE-2017-6410 kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL function with a full https URL (potentially including

Version: 4:4.8.5-0ubuntu0.5 2016-07-26 21:06:54 UTC

  kde4libs (4:4.8.5-0ubuntu0.5) precise-security; urgency=medium

  * SECURITY UPDATE: file extraction out of the expected directory
    - debian/patches/CVE-2016-6232.patch: limit files to extraction folder
      in kdecore/io/karchive.cpp.
    - CVE-2016-6232

 -- Marc Deslauriers <email address hidden> Mon, 25 Jul 2016 15:06:18 -0400

Source diff to previous version

Version: 4:4.8.5-0ubuntu0.4 2014-07-31 17:06:30 UTC

  kde4libs (4:4.8.5-0ubuntu0.4) precise-security; urgency=medium

  * SECURITY UPDATE: kauth authentication bypass (LP: #1350019)
    - debian/patches/CVE-2014-5033.patch: use dbus system bus name instead
      of PID for authentication. Cherry-picked from upstream.
    - CVE-2014-5033
 -- Felix Geyer <email address hidden> Wed, 30 Jul 2014 18:55:20 +0200

Source diff to previous version
1350019 CVE-2014-5033: kauth authentication bypass
CVE-2014-5033 kauth authentication bypass

Version: 4:4.8.5-0ubuntu0.3 2014-06-03 20:06:59 UTC

  kde4libs (4:4.8.5-0ubuntu0.3) precise; urgency=medium

  * Add kubuntu_meinproc-libxml-fix.diff to fix documentation
    compilation in KDE Software with meinproc after libxml security fix
    broke it LP: #1324066
 -- Jonathan Riddell <email address hidden> Wed, 28 May 2014 14:08:56 +0100

Source diff to previous version
1324066 meinproc breaks after security update in libxml

Version: 4:4.8.5-0ubuntu0.2 2013-05-29 09:06:43 UTC

  kde4libs (4:4.8.5-0ubuntu0.2) precise-security; urgency=low

  * SECURITY UPDATE: information disclosure via error notifications
    - debian/patches/kubuntu_use_pretty_url.diff: update
      kioslave/http/http.cpp to use prettyUrl()
    - CVE-2013-2074
    - LP: #1178286
 -- Rohan Garg <email address hidden> Thu, 09 May 2013 16:36:38 +0100

1178286 Security advisory from KDE upstream
CVE-2013-2074 prints passwords contained in HTTP URLs in error messages



About   -   Send Feedback to @ubuntu_updates