Remove warning that is no longer valid

2025-01-25 07:42:13 +08:00 · 2024-02-12 17:58:40 -06:00 · 2024-02-12 17:58:40 -06:00 · 600ea42048
commit 600ea42048
parent a7b74d67a8
1 changed files with 0 additions and 18 deletions
--- a/xsoft/other/xdg-utils.xml
+++ b/xsoft/other/xdg-utils.xml
@ -32,24 +32,6 @@
      It is required for Linux Standards Base (LSB) conformance.
    </para>

-    <warning>
-      <para>
-        A security vulnerability exists in all versions of
-        <application>xdg-utils</application> from version 1.1.0rc1 when handling
-        mailto: URIs. An attacker could potentially send a victim a URI that
-        automatically attaches a sensitive file to a new email. If a victim user
-        does not notice that an attachment was added and sends the email, this
-        could result in sensitive information disclosure.
-      </para>
-
-      <para>
-        To mitigate this flaw, either do not use mailto links at all, or always
-        double-check in the user interface that there are no unwanted attachments
-        before sending emails, especially when the email originates from clicking
-        on a mailto link.
-      </para>
-    </warning>
-
    &lfs120_checked;

    <bridgehead renderas="sect3">Package Information</bridgehead>