Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS
before 5 and Safari before 5.1.1, allows remote attackers to inject
arbitrary web script or HTML via vectors involving inactive DOM windows.
Author | Note |
---|---|
jdstrand | qt4-x11 unmaintained upstream (see README.webkit for details) marking chromium-browser as fixed since it has 22+ on all releases and they sync with upstream webkit every few weeks |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | upstream | noarch | qt4-x11 | < any | UNKNOWN |
ubuntu | upstream | noarch | qtwebkit-source | < any | UNKNOWN |
ubuntu | upstream | noarch | webkitgtk | < any | UNKNOWN |
ubuntu | 11.10 | noarch | chromium-browser | < 22.0 | UNKNOWN |
ubuntu | 12.04 | noarch | chromium-browser | < 22.0 | UNKNOWN |
ubuntu | 12.10 | noarch | chromium-browser | < 22.0 | UNKNOWN |
ubuntu | 13.04 | noarch | chromium-browser | < 22.0 | UNKNOWN |
ubuntu | 13.10 | noarch | chromium-browser | < 22.0 | UNKNOWN |
ubuntu | 14.04 | noarch | chromium-browser | < 22.0 | UNKNOWN |
ubuntu | 14.10 | noarch | chromium-browser | < 22.0 | UNKNOWN |