** Changed in: libgtkhtml
Importance: Unknown = Critical
--
Evolution vulnerability via HTML frames
https://bugs.launchpad.net/bugs/243487
You received this bug notification because you are a member of Ubuntu
Desktop Bugs, which is a bug assignee.
--
desktop-bugs mailing list
Feisty is end-of-life - Won't Fix.
** Changed in: gtkhtml3.14 (Ubuntu Feisty)
Status: Triaged = Won't Fix
--
Evolution vulnerability via HTML frames
https://bugs.launchpad.net/bugs/243487
You received this bug notification because you are a member of Ubuntu
Desktop Bugs, which is a bug
IMO this does not qualify as a high-impact bug in Gutsy, following the
guidelines in https://wiki.ubuntu.com/StableReleaseUpdates - Closing
task.
** Changed in: gtkhtml3.14 (Ubuntu Gutsy)
Status: Triaged = Won't Fix
--
Evolution vulnerability via HTML frames
Is this gtkhtml issue valid for Feisty and Gutsy, and if so, are we
going to address this issue in those releases, or, given the low
severity of the security vulnerability, should we close those tasks?
Dapper does not appear to include gtkhtml3.14, so I'm marking that task
as invalid.
** Changed
the new version is in hardy-updates now
** Changed in: gtkhtml3.14 (Ubuntu Hardy)
Status: Fix Committed = Fix Released
--
Evolution vulnerability via HTML frames
https://bugs.launchpad.net/bugs/243487
You received this bug notification because you are a member of Ubuntu
Desktop Bugs,
the new version is in intrepid
** Changed in: gtkhtml3.14 (Ubuntu)
Status: Fix Committed = Fix Released
--
Evolution vulnerability via HTML frames
https://bugs.launchpad.net/bugs/243487
You received this bug notification because you are a member of Ubuntu
Desktop Bugs, which is a bug
a new rebuild revision has been uploaded now to some libglib issues,
would be nice to give testing to this one too
--
Evolution vulnerability via HTML frames
https://bugs.launchpad.net/bugs/243487
You received this bug notification because you are a member of Ubuntu
Desktop Bugs, which is a bug
Accepted into -proposed, please test and give feedback here. Please see
https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to
enable and use -proposed. Thank you in advance!
** Tags added: verification-needed
--
Evolution vulnerability via HTML frames
** Changed in: libgtkhtml
Status: Unknown = Fix Released
--
Evolution vulnerability via HTML frames
https://bugs.launchpad.net/bugs/243487
You received this bug notification because you are a member of Ubuntu
Desktop Bugs, which is a bug assignee.
--
desktop-bugs mailing list
This does not appear to be a serious security bug because it requires
the user to insert a malicious html file into the mail composer. Based
on the patch and (limited) blackbox testing, this does not appear to be
remotely exploitable (eg via a crafted html email). The patch fixes
the new gtkhtml stable version has already been uploaded as an hardy
update
** Changed in: gtkhtml3.14 (Ubuntu Gutsy)
Status: Triaged = Fix Committed
** Changed in: gtkhtml3.14 (Ubuntu Hardy)
Status: Triaged = Fix Committed
** Changed in: gtkhtml3.14 (Ubuntu Gutsy)
Status:
this has been fixed upstream, comments for further SRU:
Patch committed to SVN stable (gnome-2-22) branch as r8880
http://svn.gnome.org/viewvc/gtkhtml?view=revisionrevision=8880
Patch committed to SVN trunk as r8881
http://svn.gnome.org/viewvc/gtkhtml?view=revisionrevision=8881
Thanks for
** Changed in: gtkhtml3.14 (Ubuntu)
Sourcepackagename: libgtkhtml2 = gtkhtml3.14
** Changed in: evolution (Ubuntu Hardy)
Status: New = Invalid
** Changed in: gtkhtml3.14 (Ubuntu Hardy)
Assignee: (unassigned) = Ubuntu Desktop Bugs (desktop-bugs)
--
Evolution vulnerability via HTML
13 matches
Mail list logo
