Nom du paquet
qt3
Date
2007-04-03
Advisory ID
MDKSA-2007:074
Affected versions
CS4.0 x86_64 , 2007.0 x86_64 , 2007.0 i586 , CS4.0 i586 , CS3.0 x86_64 , CS3.0 i586

Problem description

Andreas Nolden discover a bug in qt3, where the UTF8 decoder does
not reject overlong sequences, which can cause '/../' injection or
(in the case of konqueror) a '