Mandrake Linux Security Advisory : qt3 (MDKSA-2007:074)
Medium Nessus Plugin ID 37804
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionAndreas Nolden discover a bug in qt3, where the UTF8 decoder does not reject overlong sequences, which can cause '/../' injection or (in the case of konqueror) a '<script>' tag injection.
Updated packages have been patched to address this issue.
SolutionUpdate the affected packages.