HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.

packagechannelchannel versionpkg versionstatus
2020-12-30 13:40:40 UTC (733e53)vulnerable
2020-12-28 03:35:23 UTC (2f4765)vulnerable
2020-12-26 19:40:21 UTC (84917a)vulnerable
2020-12-25 22:30:40 UTC (be0b45)vulnerable
2020-12-24 11:50:43 UTC (57a787)vulnerable