Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArch LinuxASA-201609-2
HistorySep 01, 2016 - 12:00 a.m.

webkit2gtk: multiple issues

2016-09-0100:00:00
Arch Linux
lists.archlinux.org
28

0.006 Low

EPSS

Percentile

77.7%

JSON
  • CVE-2016-4590 (same-origin policy bypass)

xisigr of Tencent’s Xuanwu Lab discovered a vulnerability in the way
webkit handles URLs, which allows remote attackers to bypass the Same
Origin Policy via a crafted web site.

  • CVE-2016-4591 (arbitrary filesystem access)

ma.la of LINE Corporation discoveered a vulnerability in the way webkit
handles the location variable, which allows remote attackers to access
the local filesystem via unspecified vectors.

  • CVE-2016-4622 (arbitrary code execution)

Samuel Gross working with Trend Micro’s Zero Day Initiative discovered a
vulnerability that allows remote attackers to execute arbitrary code or
cause a denial of service (memory corruption) via a crafted web site.

  • CVE-2016-4624 (arbitrary code execution)

Apple found a vulnerability that allows remote attackers to execute
arbitrary code or cause a denial of service (memory corruption) via a
crafted web site.

OSVersionArchitecturePackageVersionFilename
anyanyanywebkit2gtk< 2.12.4-1UNKNOWN

Related

nessus 5
fedora 2
openvas 5
mageia 1
alpinelinux 4
debiancve 4
ubuntucve 6
prion 6
nvd 6
cve 6
cvelist 6
apple 6
zdi 2
ubuntu 1
nessus
nessus
Fedora 23 : webkitgtk4 (2016-d957ffbac1)
2016-09-02 00:00:00
Fedora 24 : webkitgtk4 (2016-4728dfe3ec)
2016-08-29 00:00:00
Mac OS X : Apple Safari < 9.1.2 Multiple Vulnerabilities
2016-07-19 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: webkitgtk4-2.12.4-1.fc24
2016-08-27 15:19:54
[SECURITY] Fedora 23 Update: webkitgtk4-2.12.4-1.fc23
2016-09-01 18:54:33
openvas
openvas
Fedora Update for webkitgtk4 FEDORA-2016-d957ffbac1
2016-09-07 00:00:00
Fedora Update for webkitgtk4 FEDORA-2016-4728dfe3ec
2016-08-28 00:00:00
Mageia: Security Advisory (MGASA-2016-0294)
2022-01-28 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerability
2016-08-31 20:34:12
alpinelinux
alpinelinux
CVE-2016-4622
2016-07-22 02:59:42
CVE-2016-4624
2016-07-22 02:59:44
CVE-2016-4591
2016-07-22 02:59:14
debiancve
debiancve
CVE-2016-4624
2016-07-22 02:59:44
CVE-2016-4622
2016-07-22 02:59:42
CVE-2016-4591
2016-07-22 02:59:14
ubuntucve
ubuntucve
CVE-2016-4623
2016-07-21 00:00:00
CVE-2016-4622
2016-07-21 00:00:00
CVE-2016-4624
2016-07-21 00:00:00
prion
prion
Memory corruption
2016-07-22 02:59:00
Memory corruption
2016-07-22 02:59:00
Memory corruption
2016-07-22 02:59:00
nvd
nvd
CVE-2016-4624
2016-07-22 02:59:44
CVE-2016-4623
2016-07-22 02:59:43
CVE-2016-4622
2016-07-22 02:59:42
cve
cve
CVE-2016-4589
2016-07-22 02:59:12
CVE-2016-4624
2016-07-22 02:59:44
CVE-2016-4622
2016-07-22 02:59:42
cvelist
cvelist
CVE-2016-4622
2016-07-22 01:00:00
CVE-2016-4589
2016-07-22 01:00:00
CVE-2016-4624
2016-07-22 01:00:00
apple
apple
About the security content of Safari 9.1.2
2016-07-18 00:00:00
About the security content of Safari 9.1.2 - Apple Support
2017-01-23 03:54:41
About the security content of iOS 9.3.3
2016-07-18 00:00:00
zdi
zdi
Apple Safari Array.slice Out-Of-Bounds Access Remote Code Execuction Vulnerability
2016-08-18 00:00:00
Apple Safari Array.splice Out-Of-Bounds Access Remote Code Execuction Vulnerability
2016-08-18 00:00:00
ubuntu
ubuntu
WebKitGTK+ vulnerabilities
2016-09-14 00:00:00

0.006 Low

EPSS

Percentile

77.7%

JSON
Related for ASA-201609-2
nessus5fedora2openvas5mageia1alpinelinux4debiancve4ubuntucve6prion6nvd6cve6cvelist6apple6zdi2ubuntu1