CVE-2009-2195

Published: 12 August 2009

Buffer overflow in WebKit in Apple Safari before 4.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted floating-point numbers.

Priority

Medium

Status

Package Release Status
qt4-x11
Launchpad, Ubuntu, Debian
Upstream Needs triage

webkit
Launchpad, Ubuntu, Debian
Upstream Needs triage

Patches:
Upstream: http://trac.webkit.org/changeset/45696

Notes

AuthorNote
jdstrand qt4-x11 unmaintained upstream (see README.webkit for details)
mdeslaur code does not appear to be present in kde4libs code is different in qt4-x11 jaunty+, may not be affected

References

Bugs