UBUNTU-CVE-2016-4588

WebKit in Apple tvOS before 9.2.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site...

UBUNTU-CVE-2016-4586

WebKit in Apple Safari before 9.1.2 and tvOS before 9.2.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site...

UBUNTU-CVE-2016-4622

WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, a different vulnerability than CVE-2016-4589, CVE-2016-4623, and CVE-2016-4624...

UBUNTU-CVE-2016-4589

WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, a different vulnerability than CVE-2016-4622, CVE-2016-4623, and CVE-2016-4624...

CVE-2016-1864

The XSS auditor in WebKit, as used in Apple iOS before 9.3 and Safari before 9.1, does not properly handle redirects in block mode, which allows remote attackers to obtain sensitive information via a crafted URL...

CVE-2016-1856

WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, a different vulnerability than CVE-2016-1854, CVE-2016-1855, and CVE-2016-1857...

UBUNTU-CVE-2016-1856

WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, a different vulnerability than CVE-2016-1854, CVE-2016-1855, and CVE-2016-1857...

Apple iOS WebKit Canvas Arbitrary Code Execution Vulnerability

Apple iOS is an operating system developed by Apple for mobile devices. WebKit is an open source web browser engine developed by KDE, Apple, Google and other companies, and is currently used by Apple Safari and Google Chrome, etc. WebKit is used as one of the drawing components. Canvas is used fo...

UBUNTU-CVE-2016-1663

The SerializedScriptValue::transferArrayBuffers function in WebKit/Source/bindings/core/v8/SerializedScriptValue.cpp in the V8 bindings in Blink, as used in Google Chrome before 50.0.2661.94, mishandles certain array-buffer data structures, which allows remote attackers to cause a denial of servi...

CVE-2016-1782

WebKit in Apple iOS before 9.3 and Safari before 9.1 does not properly restrict redirects that specify a TCP port number, which allows remote attackers to bypass intended port restrictions via a crafted web site...

CVE-2016-1781

WebKit in Apple iOS before 9.3 and Safari before 9.1 mishandles attachment URLs, which makes it easier for remote web servers to track users via unspecified vectors...

UBUNTU-CVE-2016-1779

WebKit in Apple iOS before 9.3 and Safari before 9.1 allows remote attackers to bypass the Same Origin Policy and obtain physical-location data via a crafted geolocation request...

UBUNTU-CVE-2016-1778

WebKit in Apple iOS before 9.3 and Safari before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site...

UBUNTU-CVE-2016-1783

WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site...

UBUNTU-CVE-2016-1782

WebKit in Apple iOS before 9.3 and Safari before 9.1 does not properly restrict redirects that specify a TCP port number, which allows remote attackers to bypass intended port restrictions via a crafted web site...

Apple iOS/Safari Information Disclosure Vulnerability (CNVD-2016-01839)

Apple iOS is Apple's operating system for several smart devices.Apple Safari is an American Apple web browser that is the default browser that comes with the Mac OS X and iOS operating systems. The page load implementation in WebKit in Apple iOS before 9.3 and Safari before 9.1 fails to properly...

Apple iOS WebKit Information Disclosure Vulnerability (CNVD-2016-01842)

Apple iOS is the operating system used by Apple for a number of smart devices. WebKit is a set of open-source web browser engines developed by KDE, Apple, Google and other companies, and is currently used by browsers such as Apple Safari and Google Chrome. Versions of iOS prior to 9.3 have a...

Apple Safari WebKit Remote Code Execution Vulnerability

Apple Safari is a web browser from Apple, and is the default browser that comes with the Mac OS X and iOS operating systems.WebKit is a set of open-source web browser engines developed by KDE, Apple, and Google, and is currently used by Apple Safari and Google Chrome, among other browsers. Google...

UBUNTU-CVE-2016-1644

WebKit/Source/core/layout/LayoutObject.cpp in Blink, as used in Google Chrome before 49.0.2623.87, does not properly restrict relayout scheduling, which allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted HTML document...

UBUNTU-CVE-2016-1636

The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote attackers to bypass the Subresource Integrity...