[Pkg-kde-extras] Bug#429209: [CVE-2007-3154] vulnerability in included copy of wz_tooltip
Florian Weimer
fw at deneb.enyo.de
Sat Jun 16 10:10:48 UTC 2007
Package: ktorrent
Severity: grave
Tags: security
Your package seems to embed a copy of wz_tooltip, for which a security
bug has been reported:
| Unspecified vulnerability in Walter Zorn wz_tooltip.js (aka
| wz_tooltips) before 4.01, as used by eGroupWare before 1.2.107-2 and
| other packages, has unknown impact and remote attack vectors.
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3154>
Please upgrade the included copy, and backport the changes to stable
(if necessary).
More information about the pkg-kde-extras
mailing list