[kmail2] [Bug 431218] New: mail viewer loads external fonts even with external refs disabled
Timo Weingärtner
bugzilla_noreply at kde.org
Wed Jan 6 11:08:34 GMT 2021
https://bugs.kde.org/show_bug.cgi?id=431218
Bug ID: 431218
Summary: mail viewer loads external fonts even with external
refs disabled
Product: kmail2
Version: 5.15.3
Platform: Debian testing
OS: Linux
Status: REPORTED
Severity: grave
Priority: NOR
Component: UI
Assignee: kdepim-bugs at kde.org
Reporter: timo at tiwe.de
Target Milestone: ---
SUMMARY
not sure about component
severity: grave for security/privacy/tracking problem
STEPS TO REPRODUCE
1. view HTML mail with <style>@font-face { src: url(…
2. enable HTML for this mail, but not external refs
OBSERVED RESULT
* text shows up with delay
* message "… For security/privacy reasons external references are not loaded.
…" is shown
* external requests are made for the font(s)
EXPECTED RESULT
* no external requests
* system font used instead
SOFTWARE/OS VERSIONS
Linux/KDE Plasma:
(available in About System)
KDE Plasma Version: 5.20.4
KDE Frameworks Version: 5.77.0
Qt Version: 5.15.2
ADDITIONAL INFORMATION
The mail in question was from meetup.com, including user-specific links. If
needed I can try to craft a more minimal example to provide it here.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the Kdepim-bugs
mailing list