8 matches found
Security update for webkit2gtk3 (important)
This update for webkit2gtk3 to version 2.18.0 fixes the following issues: These security issues were fixed: - CVE-2017-7039: An issue was fixed that allowed remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted web site...
SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2017:2933-1)
This update for webkit2gtk3 to version 2.18.0 fixes the following issues: These security issues were fixed : - CVE-2017-7039: An issue was fixed that allowed remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted website...
Fedora Update for webkitgtk4 FEDORA-2017-0beb752b6e
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for webkitgtk4 FEDORA-2017-b1abcbe695
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Apple WebKit Frame::setDocument UXSS Exploit
Apple WebKit suffers from a UXSS via Frame::setDocument. Apple WebKit: UXSS via Frame::setDocument CVE-2017-2365 Here's a snippet of Frame::setDocument. void Frame::setDocumentRefPtr&& newDocument ASSERT!newDocument || newDocument-frame == this; if mdoc && mdoc-pageCacheState !=...
CVE-2017-2365
creationtimestamp| type| source ---|---|--- 2017-02-24 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41453...
Apple WebKit: UXSS via Frame::setDocument (CVE-2017-2365)
Here's a snippet of Frame::setDocument. void Frame::setDocumentRefPtr&& newDocument ASSERT!newDocument || newDocument-frame == this; if mdoc && mdoc-pageCacheState != Document::InPageCache mdoc-prepareForDestruction; mdoc = newDocument.copyRef; ... Before setting |mdoc| to |newDocument|, it calls...
CVE-2017-2365
CVE-2017-2365 affects Apple WebKit components across iOS (pre-10.2.1), Safari (pre-10.0.3), and tvOS (pre-10.1.1). The issue enables cross-origin data exfiltration via crafted web content and is described in Appleās security content for iOS 10.2.1 and tvOS 10.1.1. Apple indicates patches exist in...