Oval Definition:oval:com.redhat.rhsa:def:20091128
Revision Date:2009-06-25Version:635
Title:RHSA-2009:1128: kdelibs security update (Important)
Description:The kdelibs packages provide libraries for the K Desktop Environment (KDE).

  • A flaw was found in the way the KDE CSS parser handled content for the CSS "style" attribute. A remote attacker could create a specially-crafted CSS equipped HTML page, which once visited by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror. (CVE-2009-1698)

    Users should upgrade to these updated packages, which contain a backported patch to correct this issue. The desktop must be restarted (log out, then log back in) for this update to take effect.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2009-1698
    RHSA-2009:1128
    RHSA-2009:1128-01
    RHSA-2009:1128-01
    Platform(s):Red Hat Enterprise Linux 3
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • kdelibs-devel is earlier than 6:3.1.3-6.13
  • AND kdelibs-devel is signed with Red Hat master key
  • kdelibs is earlier than 6:3.1.3-6.13
  • AND kdelibs is signed with Red Hat master key
    • BACK