CVE-2009-1724

Priority
Description
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before
4.0.2, as used on iPhone OS before 3.1, iPhone OS before 3.1.1 for iPod
touch, and other platforms, allows remote attackers to inject arbitrary web
script or HTML via vectors related to parent and top objects.
Assigned-to
micahg
Notes
jdstrandqt4-x11 unmaintained upstream (see README.webkit for details)
webkit is a fork of khtml from kdelibs. kdelibs5 is farther from
it, while qt4-x11 attempts to unify khtml and webkit
mdeslauralthough I don't know what the upstream patch is, RH stated
that it didn't affect their kde4libs versions, so I'm removing
it.
can't find info on webkit
Package
Upstream:needs-triage
Package
Upstream:released (1.1.13-1)
More Information

Updated: 2020-01-29 19:35:24 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)