CVE-2010-2441 (retired)

Priority
Description
WebKit does not properly restrict focus changes, which allows remote
attackers to read keystrokes via "cross-domain IFRAME gadgets," a different
vulnerability than CVE-2010-1126, CVE-2010-1422, and CVE-2010-2295.
Assigned-to
micahg
Notes
jdstrandqt4-x11 unmaintained upstream (see README.webkit for details)
webkit is a fork of khtml from kdelibs. kdelibs5 is farther from
it, while qt4-x11 attempts to unify khtml and webkit.
mdeslaurwebkitkde is a wrapper around qt4-x11's webkit.
This is fixed in webkit 1.2.5
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Patches:
Upstream:http://trac.webkit.org/changeset/58829
More Information

Updated: 2019-10-09 07:32:11 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)