AVG-735

Package qutebrowser
Status Fixed
Severity Critical
Type arbitrary code execution
Affected 1.4.0-1
Fixed 1.4.1-1
Current 1.6.0-1 [community]
Ticket None
Created Wed Jul 11 15:07:23 2018
Issue Severity Remote Type Description
CVE-2018-10895 Critical Yes Arbitrary code execution
Due to a CSRF vulnerability affecting the qute://settings page, it was possible for websites to modify qutebrowser settings. Via settings like...
Date Advisory Package Description
11 Jul 2018 ASA-201807-3 qutebrowser arbitrary code execution