Search CVE reports
341 – 350 of 355 results
CVE-2009-1681
Low priorityWebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not prevent web sites from loading third-party content into a subframe, which allows remote attackers to bypass...
2 affected packages
qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |
CVE-2009-1713
Medium prioritySome fixes available 1 of 2
The XSLT functionality in WebKit in Apple Safari before 4.0 does not properly implement the document function, which allows remote attackers to read (1) arbitrary local files and (2) files from different security zones via...
2 affected packages
qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |
CVE-2009-1712
Medium prioritySome fixes available 4 of 5
WebKit in Apple Safari before 4.0 does not prevent remote loading of local Java applets, which allows remote attackers to execute arbitrary code, gain privileges, or obtain sensitive information via an APPLET or OBJECT element.
2 affected packages
qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |
CVE-2009-1711
Medium prioritySome fixes available 3 of 4
WebKit in Apple Safari before 4.0 does not properly initialize memory for Attr DOM objects, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document.
2 affected packages
qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |
CVE-2009-1699
Medium prioritySome fixes available 1 of 2
The XSL stylesheet implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle XML external entities, which allows remote attackers to...
2 affected packages
qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |
CVE-2009-1698
Medium prioritySome fixes available 13 of 16
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a...
4 affected packages
kde4libs, kdelibs, qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| kde4libs | — | — | — | — | — |
| kdelibs | — | — | — | — | — |
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |
CVE-2009-1690
Medium prioritySome fixes available 13 of 16
Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to...
4 affected packages
kde4libs, kdelibs, qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| kde4libs | — | — | — | — | — |
| kdelibs | — | — | — | — | — |
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |
CVE-2009-1687
Medium prioritySome fixes available 13 of 16
The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to...
4 affected packages
kde4libs, kdelibs, qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| kde4libs | — | — | — | — | — |
| kdelibs | — | — | — | — | — |
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |
CVE-2009-0945
Medium prioritySome fixes available 6 of 8
Array index error in the insertItemBefore method in WebKit, as used in Apple Safari before 3.2.3 and 4 Public Beta, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome Stable before 1.0.154.65,...
5 affected packages
kde4libs, kdegraphics, kdelibs, qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| kde4libs | — | — | — | — | — |
| kdegraphics | — | — | — | — | — |
| kdelibs | — | — | — | — | — |
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |
CVE-2008-3632
Medium prioritySome fixes available 1 of 3
Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a web page with...
2 affected packages
qt4-x11, webkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qt4-x11 | — | — | — | — | — |
| webkit | — | — | — | — | — |