Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-3079-1
HistorySep 14, 2016 - 12:00 a.m.

WebKitGTK+ vulnerabilities

2016-09-1400:00:00
ubuntu.com
31

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.007 Low

EPSS

Percentile

80.5%

JSON

Releases

  • Ubuntu 16.04 ESM

Packages

  • webkit2gtk - JavaScript engine library from WebKitGTK+ - GObject introspection

Details

A large number of security issues were discovered in the WebKitGTK+ Web and
JavaScript engines. If a user were tricked into viewing a malicious
website, a remote attacker could exploit a variety of issues related to web
browser security, including cross-site scripting attacks, denial of service
attacks, and arbitrary code execution.

OSVersionArchitecturePackageVersionFilename
Ubuntu16.04noarchlibjavascriptcoregtk-4.0-18< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Ubuntu16.04noarchgir1.2-javascriptcoregtk-4.0< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Ubuntu16.04noarchgir1.2-webkit2-4.0< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Ubuntu16.04noarchlibjavascriptcoregtk-4.0-18-dbgsym< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Ubuntu16.04noarchlibjavascriptcoregtk-4.0-bin< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Ubuntu16.04noarchlibjavascriptcoregtk-4.0-bin-dbgsym< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Ubuntu16.04noarchlibjavascriptcoregtk-4.0-dev< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Ubuntu16.04noarchlibwebkit2gtk-4.0-37< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Ubuntu16.04noarchlibwebkit2gtk-4.0-37-dbgsym< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Ubuntu16.04noarchlibwebkit2gtk-4.0-37-gtk2< 2.12.5-0ubuntu0.16.04.1UNKNOWN
Rows per page:
1-10 of 131

Related

openvas 8
nessus 11
mageia 1
apple 12
archlinux 2
fedora 5
prion 17
cve 17
debiancve 6
alpinelinux 4
ubuntucve 17
zdi 6
seebug 1
openvas
openvas
Ubuntu Update for webkit2gtk USN-3079-1
2016-09-15 00:00:00
Apple Safari Multiple Vulnerabilities December16 (Mac OS X)
2016-12-01 00:00:00
Fedora Update for webkitgtk4 FEDORA-2016-4728dfe3ec
2016-08-28 00:00:00
nessus
nessus
Ubuntu 16.04 LTS : WebKitGTK+ vulnerabilities (USN-3079-1)
2016-09-15 00:00:00
Mac OS X : Apple Safari < 9.1.2 Multiple Vulnerabilities
2016-07-19 00:00:00
Fedora 23 : webkitgtk4 (2016-d957ffbac1)
2016-09-02 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerability
2016-08-31 20:34:12
apple
apple
About the security content of Safari 9.1.2 - Apple Support
2017-01-23 03:54:41
About the security content of Safari 9.1.2
2016-07-18 00:00:00
About the security content of Safari 9.1.1
2016-05-16 00:00:00
archlinux
archlinux
webkit2gtk: multiple issues
2016-09-01 00:00:00
webkit2gtk: arbitrary code execution
2016-06-04 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: webkitgtk4-2.12.4-1.fc23
2016-09-01 18:54:33
[SECURITY] Fedora 24 Update: webkitgtk4-2.12.4-1.fc24
2016-08-27 15:19:54
[SECURITY] Fedora 22 Update: webkitgtk4-2.12.3-1.fc22
2016-06-20 20:21:32
prion
prion
Memory corruption
2016-07-22 02:59:00
Memory corruption
2016-07-22 02:59:00
Memory corruption
2016-07-22 02:59:00
cve
cve
CVE-2016-4623
2016-07-22 02:59:00
CVE-2016-4624
2016-07-22 02:59:00
CVE-2016-4622
2016-07-22 02:59:00
debiancve
debiancve
CVE-2016-4622
2016-07-22 02:59:00
CVE-2016-4624
2016-07-22 02:59:00
CVE-2016-1856
2016-05-20 11:00:00
alpinelinux
alpinelinux
CVE-2016-4624
2016-07-22 02:59:00
CVE-2016-4622
2016-07-22 02:59:00
CVE-2016-4591
2016-07-22 02:59:00
ubuntucve
ubuntucve
CVE-2016-4589
2016-07-21 00:00:00
CVE-2016-4623
2016-07-21 00:00:00
CVE-2016-4622
2016-07-21 00:00:00
zdi
zdi
Apple Safari DataCue Use-After-Free Remote Code Execution Vulnerability
2016-05-19 00:00:00
(Pwn2Own) Apple Safari TextTrack Object Use-After-Free Remote Code Execution Vulnerability
2016-05-19 00:00:00
(Pwn2Own) Apple Safari ArrayStorage DFG Optimization Use-After-Free Remote Code Execution Vulnerability
2016-05-19 00:00:00
seebug
seebug
Safari < 9.1.2 URL redirection vulnerability
2016-09-23 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.007 Low

EPSS

Percentile

80.5%

JSON
Related for USN-3079-1
openvas8nessus11mageia1apple12archlinux2fedora5prion17cve17debiancve6alpinelinux4ubuntucve17zdi6seebug1