xisigr of Tencent’s Xuanwu Lab discovered a vulnerability in the way
webkit handles URLs, which allows remote attackers to bypass the Same
Origin Policy via a crafted web site.
ma.la of LINE Corporation discoveered a vulnerability in the way webkit
handles the location variable, which allows remote attackers to access
the local filesystem via unspecified vectors.
Samuel Gross working with Trend Micro’s Zero Day Initiative discovered a
vulnerability that allows remote attackers to execute arbitrary code or
cause a denial of service (memory corruption) via a crafted web site.
Apple found a vulnerability that allows remote attackers to execute
arbitrary code or cause a denial of service (memory corruption) via a
crafted web site.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
any | any | any | webkit2gtk | < 2.12.4-1 | UNKNOWN |