Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Fri, 10 May 2013 14:31:05 -0700
From: Seth Arnold <>
Subject: CVE Request: kdelibs

Hello Kurt, Steve, all,

A bug in our Launchpad [1] refers to KDE Bug 319428 [2] as fixing a
security issue: displaying raw URLs, including passwords, in a handful
of error messages. A patch is in git [3] to sanitize URLs before
displaying them in the affected error messages.


Please assign a CVE number for this issue. Thank you.


Download attachment "signature.asc" of type "application/pgp-signature" (491 bytes)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.