Download
| Alert*
oval:org.secpod.oval:def:38821
The host is missing a critical security update according to Apple advisory, APPLE-SA-2017-01-23-7. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted web content. Successful exploitation allows attackers to execute ... oval:org.secpod.oval:def:112078 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:112074 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:1800372 CVE-2017-2350 Versions affected: WebKitGTK+ before 2.14.4.Impact: Processing maliciously crafted web content may exfiltrate data cross-origin. Description: A prototype access issue was addressed through improved exception handling. CVE-2017-2354 Versions affected: WebKitGTK+ before 2.14.4.Impact: Pr ... oval:org.secpod.oval:def:51721 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:89044566 This update for webkit2gtk3 to version 2.18.0 fixes the following issues: These security issues were fixed: - CVE-2017-7039: An issue was fixed that allowed remote attackers to execute arbitrary code or cause a denial of service via a crafted web site . - CVE-2017-7018: An issue was fixed that allo ... oval:org.secpod.oval:def:703469 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:38803 The host is missing a security update according to Apple advisory, APPLE-SA-2017-01-23-5. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unknown vectors. Successful exploitation could allow attackers to execute arbitrary code o ... oval:org.secpod.oval:def:1800810 CVE-2017-2350; Versions affected: WebKitGTK+ before 2.14.4.Impact: Processing maliciously crafted web content may exfiltrate data cross-origin. Description: A prototype access issue was addressed through improved exception handling. CVE-2017-2354; Versions affected: WebKitGTK+ before 2.14.4.Impact: ... oval:org.secpod.oval:def:38817 The host is missing a critical security update according to Apple advisory, APPLE-SA-2017-01-23-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted web content. Successful exploitation allows attackers to execute ... oval:org.secpod.oval:def:38806 The host is installed with Apple Safari before 10.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly perform memory management. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38818 The host is installed with Apple iTunes before 12.5.5 or Apple iCloud before 6.1.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle memory. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:89002298 This update for webkit2gtk3 fixes the following issues: Update to version 2.18.5: + Disable SharedArrayBuffers from Web API. + Reduce the precision of quot;highquot; resolution time to 1ms. + bsc#1075419 - Security fixes: includes improvements to mitigate the effects of Spectre and Meltdown . Update ... |