|
|
Log in / Subscribe / Register

kcoreaddons: HTML injection

Package(s):kcoreaddons CVE #(s):CVE-2016-7966
Created:October 10, 2016 Updated:October 24, 2016
Description: From the Arch Linux advisory:

Through a malicious URL that contained a quote character it was possible to inject HTML code in KMail's plain text viewer. Due to the parser used on the URL it was not possible to include the equal sign (=) or a space into the injected HTML, which greatly reduces the available HTML functionality. Although it is possible to include an HTML comment indicator to hide content.

Alerts:
Fedora FEDORA-2016-f7a079f775 kdepimlibs 2016-11-11
Fedora FEDORA-2016-c9d15bbcbb kdepimlibs 2016-11-03
Fedora FEDORA-2016-1b042a79bd kleopatra 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-syndication 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-pimcommon 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-messagelib 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-mailimporter 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-mailcommon 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-libksieve 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-libkleo 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-libkdepim 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-libgravatar 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-ktnef 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kpimtextedit 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kontactinterface 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kmime 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kmbox 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kmailtransport 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kldap 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kimap 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kidentitymanagement 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kholidays 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kdgantt2 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kcontacts 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kcalendarutils 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kcalendarcore 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kblog 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-kalarmcal 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-incidenceeditor 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-grantleetheme 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-gpgmepp 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-eventviews 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-calendarsupport 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-akonadi-server 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-akonadi-search 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-akonadi-notes 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-akonadi-mime 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-akonadi-contacts 2016-10-30
Fedora FEDORA-2016-1b042a79bd kf5-akonadi-calendar 2016-10-30
Fedora FEDORA-2016-1b042a79bd kdepim-runtime 2016-10-30
Fedora FEDORA-2016-1b042a79bd kdepim-apps-libs 2016-10-30
Fedora FEDORA-2016-1b042a79bd kdepim-addons 2016-10-30
Fedora FEDORA-2016-1b042a79bd kdepim 2016-10-30
Debian-LTS DLA-673-1 kdepimlibs 2016-10-22
Debian DSA-3697-1 kdepimlibs 2016-10-21
openSUSE openSUSE-SU-2016:2559-1 kcoreaddons 2016-10-18
openSUSE openSUSE-SU-2016:2558-1 kcoreaddons 2016-10-18
Ubuntu USN-3100-1 kdepimlibs 2016-10-12
Arch Linux ASA-201610-4 kcoreaddons 2016-10-07
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds