Mageia 6: 2018-0478 Moderate: kio-extras Information Disclosure Risk
mageia
December 6, 2018
The HTML thumbnailer was incorrectly accessing some content of remote URLs listed in HTML files
Summary
The HTML thumbnailer was incorrectly accessing some content of remote
URLs listed in HTML files. This meant that the owners of the serversreferred in HTML files in your system could have seen in their access
logs your IP address every time the thumbnailer tried to create the
thumbnail (CVE-2018-19120).
References
- https://bugs.mageia.org/show_bug.cgi?id=23868
- - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/CWRCGXLPJHM4OFD66BINH2FIMYHRCRKF/
- https://www.cve.org/CVERecord?id=CVE-2018-19120
Topics Covered
Resolution
SRPMS
- 6/core/kio-extras-17.12.2-4.1.mga6
PREVIOUS
NEXT
Publication date: 06 Dec 2018
URL: https://advisories.mageia.org/MGASA-2018-0477.html
Type: security
CVE: CVE-2018-19120
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!