[ubuntu/zesty-proposed] kde4libs 4:4.14.28-0ubuntu3 (Accepted)

Rik Mills rikmills at kubuntu.org
Sat Mar 4 10:17:21 UTC 2017 

kde4libs (4:4.14.28-0ubuntu3) zesty; urgency=medium

  * SECURITY UPDATE:Information Leak when accessing https when using a
    malicious PAC file
     - debian/patches/kio-sanitize-url-to-FindProxyForURL.patch
     - Thanks to Safebreach Labs researchers Safebreach Labs researchers
        Itzik Kotler, Yonatan Fridburg and Amit Klein for reporting this
        issue, Albert Astals Cid for fixing this issue.
      - No CVE number.
      - fixes (LP: #1668871)

Date: Sat, 04 Mar 2017 10:07:23 +0000
Changed-By: Rik Mills <rikmills at kubuntu.org>
Maintainer: Debian/Kubuntu Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>
https://launchpad.net/ubuntu/+source/kde4libs/4:4.14.28-0ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 04 Mar 2017 10:07:23 +0000
Source: kde4libs
Binary: libkdecore5 libkdeui5 libkpty4 libkdesu5 libkjsapi4 libkjsembed4 libkio5 libkntlm4 libsolid4 libkde3support4 libkfile4 libknewstuff2-4 libknewstuff3-4 libkparts4 libkutils4 libthreadweaver4 libkhtml5 libkimproxy4 libkmediaplayer4 libktexteditor4 libknotifyconfig4 libkdnssd4 libkrosscore4 libkrossui4 libplasma3 libkunitconversion4 libkdewebkit5 libkcmutils4 libkemoticons4 libkidletime4 libkprintutils4 libkdeclarative5 kdelibs-bin kdelibs5-plugins kdelibs5-data kdoctools kdelibs5-dev kdelibs5-dbg
Architecture: source
Version: 4:4.14.28-0ubuntu3
Distribution: zesty
Urgency: medium
Maintainer: Debian/Kubuntu Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>
Changed-By: Rik Mills <rikmills at kubuntu.org>
Description:
 kdelibs-bin - core executables for KDE Applications
 kdelibs5-data - core shared data for all KDE Applications
 kdelibs5-dbg - debugging symbols for the KDE Development Platform libraries
 kdelibs5-dev - development files for the KDE Development Platform libraries
 kdelibs5-plugins - core plugins for KDE Applications
 kdoctools  - various tools for accessing application documentation
 libkcmutils4 - utility classes for using KCM modules
 libkde3support4 - KDE 3 Support Library for the KDE 4 Platform
 libkdeclarative5 - declarative library for plasma
 libkdecore5 - KDE Platform Core Library
 libkdesu5  - Console-mode Authentication Library for the KDE Platform
 libkdeui5  - KDE Platform User Interface Library
 libkdewebkit5 - KDE WebKit Library
 libkdnssd4 - DNS-SD Protocol Library for the KDE Platform
 libkemoticons4 - utility classes to deal with emoticon themes
 libkfile4  - File Selection Dialog Library for KDE Platform
 libkhtml5  - KHTML Web Content Rendering Engine
 libkidletime4 - library to provide information about idle time
 libkimproxy4 - Instant Messaging Interface Library for the KDE Platform
 libkio5    - Network-enabled File Management Library for the KDE Platform
 libkjsapi4 - KJS API Library for the KDE Development Platform
 libkjsembed4 - library for binding JavaScript objects to QObjects
 libkmediaplayer4 - KMediaPlayer Interface for the KDE Platform
 libknewstuff2-4 - "Get Hot New Stuff" v2 Library for the KDE Platform
 libknewstuff3-4 - "Get Hot New Stuff" v3 Library for the KDE Platform
 libknotifyconfig4 - library for configuring KDE Notifications
 libkntlm4  - NTLM Authentication Library for the KDE Platform
 libkparts4 - Framework for the KDE Platform Graphical Components
 libkprintutils4 - utility classes to deal with printing
 libkpty4   - Pseudo Terminal Library for the KDE Platform
 libkrosscore4 - Kross Core Library
 libkrossui4 - Kross UI Library
 libktexteditor4 - KTextEditor interfaces for the KDE Platform
 libkunitconversion4 - Unit Conversion library for the KDE Platform
 libkutils4 - dummy transitional library
 libplasma3 - Plasma Library for the KDE Platform
 libsolid4  - Solid Library for KDE Platform
 libthreadweaver4 - ThreadWeaver Library for the KDE Platform
Launchpad-Bugs-Fixed: 1668871
Changes:
 kde4libs (4:4.14.28-0ubuntu3) zesty; urgency=medium
 .
   * SECURITY UPDATE:Information Leak when accessing https when using a
     malicious PAC file
      - debian/patches/kio-sanitize-url-to-FindProxyForURL.patch
      - Thanks to Safebreach Labs researchers Safebreach Labs researchers
         Itzik Kotler, Yonatan Fridburg and Amit Klein for reporting this
         issue, Albert Astals Cid for fixing this issue.
       - No CVE number.
       - fixes (LP: #1668871)
Checksums-Sha1:
 5f3f84a59355780301487ae4928d2f6714054802 5364 kde4libs_4.14.28-0ubuntu3.dsc
 2a1ce8e1ff30565ea25c1f77fbf321923c6a4936 288092 kde4libs_4.14.28-0ubuntu3.debian.tar.xz
Checksums-Sha256:
 3ebf0cdc49e9887387032c977d29c57123773abe41348e49ea79b707cbe25988 5364 kde4libs_4.14.28-0ubuntu3.dsc
 39b85ba11876d8406ad52e4acabced8b395e9201d28e9190f1b565d2fe4d3f67 288092 kde4libs_4.14.28-0ubuntu3.debian.tar.xz
Files:
 7aa46df96adf1049206febaffa92da6c 5364 libs optional kde4libs_4.14.28-0ubuntu3.dsc
 46393706579fd8834459a7ccc234b9d5 288092 libs optional kde4libs_4.14.28-0ubuntu3.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=RPEM
-----END PGP SIGNATURE-----

More information about the Zesty-changes mailing list