USN-3100-1: KDE-PIM Libraries vulnerability
12 October 2016
KMail could be made to run HTML if it opened a specially crafted email.
- kdepimlibs - the KDE PIM libraries
Roland Tapken discovered that the KDE-PIM Libraries incorrectly filtered
URLs. A remote attacker could use this issue to perform an HTML injection
attack in the KMail plain text viewer.