The test doesn't catch strings that only have one ".." at the beginning. So "../foo" passes the test while "../../foo" is caught by it. -- You received this bug notification because you are a member of Kubuntu Bugs, which is subscribed to kdenetwork in Ubuntu. https://bugs.launchpad.net/bugs/757526 Title: Updated fix for CVE-2010-1000