kioslave: CVE-2014-8600 patch (backport)

For more information: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8600 https://www.kde.org/info/security/advisory-20141113-1.txt
2025-02-23 18:32:50 +00:00 · 2015-01-03 03:25:06 +00:00 · 2015-01-03 03:25:06 +00:00 · 58f1b49f80
commit 58f1b49f80
parent 2a93c58941
1 changed files with 2 additions and 1 deletions
--- a/kioslave/bookmarks/kio_bookmarks.cpp
+++ b/kioslave/bookmarks/kio_bookmarks.cpp
@ -22,6 +22,7 @@
 #include <stdlib.h>

 #include <qregexp.h>
+#include <qtextdocument.h>

 #include <kapplication.h>
 #include <kcmdlineargs.h>
@ -197,7 +198,7 @@ void BookmarksProtocol::get( const KUrl& url )
    echoImage(regexp.cap(1), regexp.cap(2), url.queryItem("size"));
  } else {
    echoHead();
-    echo("<p class=\"message\">" + i18n("Wrong request: %1",path) + "</p>");
+    echo("<p class=\"message\">" + i18n("Bad request: %1", Qt::escape(Qt::escape(url.prettyUrl()))) + "</p>");
  }
  finished();
 }