Through a malicious URL that contained a quote character it was possible to inject HTML code in KMail's plaintext viewer. Due to the parser used on the URL it was not possible to include the equal sign (=) or a space into the injected HTML, which greatly reduces the available HTML functionality. Although it is possible to include an HTML comment indicator to hide content.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "kdepimlibs-dbg" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "kdepimlibs-kio-plugins" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "kdepimlibs-kio-plugins-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "kdepimlibs5-dev" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "kdepimlibs5-dev-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-calendar4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-calendar4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-contact4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-contact4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-kabc4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-kabc4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-kcal4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-kcal4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-kde4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-kde4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-kmime4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-kmime4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-notes4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-notes4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-socialutils4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-socialutils4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-xml4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libakonadi-xml4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libgpgme++2" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libgpgme++2-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkabc4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkabc4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkalarmcal2" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkalarmcal2-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkblog4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkblog4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkcal4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkcal4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkcalcore4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkcalcore4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkcalutils4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkcalutils4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkholidays4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkholidays4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkimap4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkimap4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkldap4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkldap4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkmbox4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkmbox4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkmime4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkmime4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkontactinterface4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkontactinterface4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkpimidentities4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkpimidentities4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkpimtextedit4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkpimtextedit4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkpimutils4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkpimutils4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkresources4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkresources4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libktnef4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libktnef4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkxmlrpcclient4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libkxmlrpcclient4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libmailtransport4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libmailtransport4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libmicroblog4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libmicroblog4-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libqgpgme1" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libqgpgme1-dbgsym" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libsyndication4" }, { "binary_version": "4:4.13.3-0ubuntu0.4", "binary_name": "libsyndication4-dbgsym" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "5.18.0-0ubuntu1.1", "binary_name": "libkf5coreaddons-bin-dev" }, { "binary_version": "5.18.0-0ubuntu1.1", "binary_name": "libkf5coreaddons-bin-dev-dbgsym" }, { "binary_version": "5.18.0-0ubuntu1.1", "binary_name": "libkf5coreaddons-data" }, { "binary_version": "5.18.0-0ubuntu1.1", "binary_name": "libkf5coreaddons-dev" }, { "binary_version": "5.18.0-0ubuntu1.1", "binary_name": "libkf5coreaddons-dev-dbgsym" }, { "binary_version": "5.18.0-0ubuntu1.1", "binary_name": "libkf5coreaddons5" }, { "binary_version": "5.18.0-0ubuntu1.1", "binary_name": "libkf5coreaddons5-dbg" }, { "binary_version": "5.18.0-0ubuntu1.1", "binary_name": "libkf5coreaddons5-dbgsym" } ] }