FreeBSD Ports: kdelibs

The remote host is missing an update to the system as announced in the referenced advisory.

The following packages are affected: kdelibs kdebase linux-opera opera firefox linux-mozilla linux-mozilla-devel mozilla-gtk1 mozilla netscape7 CVE-2004-0717 Opera 7.51 for Windows and 7.50 for Linux does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability. CVE-2004-0718 The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability. CVE-2004-0721 Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.

Update your system with the appropriate patches or software upgrades. http://secunia.com/advisories/11978/ http://bugzilla.mozilla.org/show_bug.cgi?id=246448 ftp://ftp.kde.org/pub/kde/security_patches/post-3.2.3-kdelibs-htmlframes.patch ftp://ftp.kde.org/pub/kde/security_patches/post-3.2.3-kdebase-htmlframes.patch http://www.vuxml.org/freebsd/641859e8-eca1-11d8-b913-000c41e2cdad.html