BugTraq
WebKitGTK+ Security Advisory WSA-2018-0002 Jan 24 2018 05:53PM
Carlos Alberto Lopez Perez (clopez igalia com)
------------------------------------------------------------------------

WebKitGTK+ Security Advisory WSA-2018-0002
------------------------------------------------------------------------

Date reported : January 24, 2018
Advisory ID : WSA-2018-0002
Advisory URL : https://webkitgtk.org/security/WSA-2018-0002.html
CVE identifiers : CVE-2018-4088, CVE-2018-4089, CVE-2018-4096,
CVE-2017-7153, CVE-2017-7160, CVE-2017-7161,
CVE-2017-7165, CVE-2017-13884, CVE-2017-13885.

Several vulnerabilities were discovered in WebKitGTK+.

CVE-2018-4088
Versions affected: WebKitGTK+ before 2.18.6.
Credit to Jeonghoon Shin of Theori.
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Description: Multiple memory corruption
issues were addressed with improved memory handling.

CVE-2018-4089
Versions affected: WebKitGTK+ before 2.18.4.
Credit to Ivan Fratric of Google Project Zero.
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Description: Multiple memory corruption
issues were addressed with improved memory handling.

CVE-2018-4096
Versions affected: WebKitGTK+ before 2.18.6.
Credit to OSS-Fuzz.
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Description: Multiple memory corruption
issues were addressed with improved memory handling.

CVE-2017-7153
Versions affected: WebKitGTK+ before 2.18.6.
Credit to Jerry Decime.
Impact: Visiting a malicious website may lead to user interface
spoofing. Description: Redirect responses to 401 Unauthorized may
allow a malicious website to incorrectly display the lock icon on
mixed content. This issue was addressed through improved URL display
logic.

CVE-2017-7160
Versions affected: WebKitGTK+ before 2.18.6.
Credit to Richard Zhu (fluorescence) working with Trend Micro's Zero
Day Initiative.
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Description: Multiple memory corruption
issues were addressed with improved memory handling.

CVE-2017-7161
Versions affected: WebKitGTK+ before 2.18.6.
Credit to Mitin Svyat.
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Description: A command injection issue
existed in Web Inspector. This issue was addressed through improved
escaping of special characters.

CVE-2017-7165
Versions affected: WebKitGTK+ before 2.18.6.
Credit to 360 Security working with Trend Micro's Zero Day
Initiative.
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Description: Multiple memory corruption
issues were addressed with improved memory handling.

CVE-2017-13884
Versions affected: WebKitGTK+ before 2.18.6.
Credit to 360 Security working with Trend Micro's Zero Day
Initiative.
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Description: Multiple memory corruption
issues were addressed with improved memory handling.

CVE-2017-13885
Versions affected: WebKitGTK+ before 2.18.6.
Credit to 360 Security working with Trend Micro's Zero Day
Initiative.
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Description: Multiple memory corruption
issues were addressed with improved memory handling.

We recommend updating to the last stable version of WebKitGTK+. It is
the best way of ensuring that you are running a safe version of
WebKitGTK+. Please check our website for information about the last
stable releases.

Further information about WebKitGTK+ Security Advisories can be found
at: https://webkitgtk.org/security.html

The WebKitGTK+ team,
January 24, 2018

-----BEGIN PGP SIGNATURE-----
Comment: You can fetch my GnuPG key from http://key.neutrino.es
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=ZDIC
-----END PGP SIGNATURE-----

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus