MGASA-2018-0477

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2018-0477.html

Import Source

https://advisories.mageia.org/MGASA-2018-0477.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2018-0477

Related

CVE-2018-19120

Published

2018-12-06T12:10:17Z

Modified

2018-12-06T11:45:25Z

Summary

Updated kio-extras packages fix security vulnerability

Details

The HTML thumbnailer was incorrectly accessing some content of remote URLs listed in HTML files. This meant that the owners of the servers referred in HTML files in your system could have seen in their access logs your IP address every time the thumbnailer tried to create the thumbnail (CVE-2018-19120).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:6 / kio-extras

Package

Name: kio-extras
Purl: pkg:rpm/mageia/kio-extras?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

17.12.2-4.1.mga6

Ecosystem specific

{
    "section": "core"
}