diff options
| author | Martin Wilke <miwi@FreeBSD.org> | 2009-11-27 01:44:03 +0000 |
|---|---|---|
| committer | Martin Wilke <miwi@FreeBSD.org> | 2009-11-27 01:44:03 +0000 |
| commit | 805f92c8d2c35446b58a7f19becde3081dc967ae (patch) | |
| tree | c3df161bbb9f1af23faa9ee39706b9327ecb9abb /x11/kde4-runtime/files | |
| parent | e85e19a1536af7cdedc8f3ecd029cbdb0bedcaed (diff) | |
| download | ports-805f92c8d2c35446b58a7f19becde3081dc967ae.tar.gz ports-805f92c8d2c35446b58a7f19becde3081dc967ae.zip | |
Notes
Diffstat (limited to 'x11/kde4-runtime/files')
| -rw-r--r-- | x11/kde4-runtime/files/patch-ocert-2009-015-kioslave | 16 |
1 files changed, 0 insertions, 16 deletions
diff --git a/x11/kde4-runtime/files/patch-ocert-2009-015-kioslave b/x11/kde4-runtime/files/patch-ocert-2009-015-kioslave deleted file mode 100644 index 0024b941e34d..000000000000 --- a/x11/kde4-runtime/files/patch-ocert-2009-015-kioslave +++ /dev/null @@ -1,16 +0,0 @@ ---- ./kioslave/info/info.cc 2009/10/02 15:51:26 1030578 -+++ ./kioslave/info/info.cc 2009/10/02 15:53:30 1030579 -@@ -89,6 +89,13 @@ - return; - } - -+ // '<' in the path looks suspicious, someone is trying info:/dir/<script>alert('xss')</script> -+ if (url.path().contains('<')) -+ { -+ error(KIO::ERR_DOES_NOT_EXIST, url.url()); -+ return; -+ } -+ - mimeType("text/html"); - // extract the path and node from url - decodeURL( url ); |