Download
| Alert*
oval:org.secpod.oval:def:112078
WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:112074 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:1800372 CVE-2017-2350 Versions affected: WebKitGTK+ before 2.14.4.Impact: Processing maliciously crafted web content may exfiltrate data cross-origin. Description: A prototype access issue was addressed through improved exception handling. CVE-2017-2354 Versions affected: WebKitGTK+ before 2.14.4.Impact: Pr ... oval:org.secpod.oval:def:51721 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:89044566 This update for webkit2gtk3 to version 2.18.0 fixes the following issues: These security issues were fixed: - CVE-2017-7039: An issue was fixed that allowed remote attackers to execute arbitrary code or cause a denial of service via a crafted web site . - CVE-2017-7018: An issue was fixed that allo ... oval:org.secpod.oval:def:703469 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:38803 The host is missing a security update according to Apple advisory, APPLE-SA-2017-01-23-5. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unknown vectors. Successful exploitation could allow attackers to execute arbitrary code o ... oval:org.secpod.oval:def:38815 The host is installed with Apple Safari before 10.0.3 and is prone to a cross-origin bypass vulnerability. A flaw is present in the application, which fails to properly handle variable validation. Successful exploitation could allow attackers to exfiltrate data cross-origin. oval:org.secpod.oval:def:1800810 CVE-2017-2350; Versions affected: WebKitGTK+ before 2.14.4.Impact: Processing maliciously crafted web content may exfiltrate data cross-origin. Description: A prototype access issue was addressed through improved exception handling. CVE-2017-2354; Versions affected: WebKitGTK+ before 2.14.4.Impact: ... oval:org.secpod.oval:def:89002298 This update for webkit2gtk3 fixes the following issues: Update to version 2.18.5: + Disable SharedArrayBuffers from Web API. + Reduce the precision of quot;highquot; resolution time to 1ms. + bsc#1075419 - Security fixes: includes improvements to mitigate the effects of Spectre and Meltdown . Update ... |