This commit is contained in:
Alexei Sorokin
Git OBS Bridge
parent
17a7717fb4
commit
5fcb493dec
@ -4,7 +4,7 @@ Wed Jul 11 17:46:59 UTC 2018 - 9+suse@cirno.systems
|
|||||||
- Update to version 1.4.1:
|
- Update to version 1.4.1:
|
||||||
Security:
|
Security:
|
||||||
* CVE-2018-10895: Fix CSRF issue on the qute://settings page,
|
* CVE-2018-10895: Fix CSRF issue on the qute://settings page,
|
||||||
leading to possible arbitrary code execution.
|
leading to possible arbitrary code execution (boo#1100968).
|
||||||
See the related GitHub issue for details:
|
See the related GitHub issue for details:
|
||||||
https://github.com/qutebrowser/qutebrowser/issues/4060
|
https://github.com/qutebrowser/qutebrowser/issues/4060
|
||||||
Fixed:
|
Fixed:
|
||||||
@ -123,7 +123,8 @@ Tue Jul 3 16:29:33 UTC 2018 - 9+suse@cirno.systems
|
|||||||
* Various subtle keyboard focus issues.
|
* Various subtle keyboard focus issues.
|
||||||
* The security fix in v1.3.3 caused URLs with ampersands
|
* The security fix in v1.3.3 caused URLs with ampersands
|
||||||
(www.example.com?one=1&two=2) to send the wrong arguments
|
(www.example.com?one=1&two=2) to send the wrong arguments
|
||||||
when clicked on the qute://history page.
|
when clicked on the qute://history page (boo#1100968,
|
||||||
|
CVE-2018-1000559).
|
||||||
* Crash when opening a PDF page with PDF.js enabled
|
* Crash when opening a PDF page with PDF.js enabled
|
||||||
(on QtWebKit), but no PDF.js installed.
|
(on QtWebKit), but no PDF.js installed.
|
||||||
* Crash when closing a tab shortly after opening it.
|
* Crash when closing a tab shortly after opening it.
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user