BugTraq
WebKitGTK+ Security Advisory WSA-2016-0002 Mar 11 2016 02:25PM
Carlos Alberto Lopez Perez (clopez igalia com)
------------------------------------------------------------------------

WebKitGTK+ Security Advisory WSA-2016-0002
------------------------------------------------------------------------

Date reported : March 11, 2016
Advisory ID : WSA-2016-0002
Advisory URL : http://webkitgtk.org/security/WSA-2016-0002.html
CVE identifiers : CVE-2016-1723, CVE-2016-1724, CVE-2016-1725,
CVE-2016-1726, CVE-2016-1727, CVE-2016-1728.

Several vulnerabilities were discovered on WebKitGTK+.

CVE-2016-1723
Versions affected: WebKitGTK+ before 2.10.5.
Credit to Apple.
WebKit, as used in Apple iOS before 9.2.1 and Safari before 9.0.3,
allows remote attackers to execute arbitrary code or cause a denial
of service (memory corruption) via a crafted web site, a different
vulnerability than CVE-2016-1725 and CVE-2016-1726.

CVE-2016-1724
Versions affected: WebKitGTK+ before 2.10.5.
Credit to Apple.
WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and
tvOS before 9.1.1, allows remote attackers to execute arbitrary code
or cause a denial of service (memory corruption) via a crafted web
site, a different vulnerability than CVE-2016-1727.

CVE-2016-1725
Versions affected: WebKitGTK+ before 2.10.5.
Credit to Apple.
WebKit, as used in Apple iOS before 9.2.1 and Safari before 9.0.3,
allows remote attackers to execute arbitrary code or cause a denial
of service (memory corruption) via a crafted web site, a different
vulnerability than CVE-2016-1723 and CVE-2016-1726.

CVE-2016-1726
Versions affected: WebKitGTK+ before 2.10.8.
Credit to Apple.
WebKit, as used in Apple iOS before 9.2.1 and Safari before 9.0.3,
allows remote attackers to execute arbitrary code or cause a denial
of service (memory corruption) via a crafted web site, a different
vulnerability than CVE-2016-1723 and CVE-2016-1725.

CVE-2016-1727
Versions affected: WebKitGTK+ before 2.10.5.
Credit to Apple.
WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and
tvOS before 9.1.1, allows remote attackers to execute arbitrary code
or cause a denial of service (memory corruption) via a crafted web
site, a different vulnerability than CVE-2016-1724.

CVE-2016-1728
Versions affected: WebKitGTK+ before 2.10.5.
Credit to an anonymous researcher coordinated via Joe Vennix.
The Cascading Style Sheets (CSS) implementation in Apple iOS before
9.2.1 and Safari before 9.0.3 mishandles the "a:visited button"
selector during height processing, which makes it easier for remote
attackers to obtain sensitive browser-history information via a
crafted web site.

We recommend updating to the last stable version of WebKitGTK+. It is
the best way of ensuring that you are running a safe version of
WebKitGTK+. Please check our website for information about the last
stable releases.

Further information about WebKitGTK+ Security Advisories can be found
at: http://webkitgtk.org/security.html

The WebKitGTK+ team,
March 11, 2016

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: You can fetch my GnuPG key from http://key.neutrino.es
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=y81H
-----END PGP SIGNATURE-----

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus