USN-1617-1: WebKit vulnerabilities
25 October 2012
Multiple security vulnerabilities were fixed in WebKit.
Releases
Packages
- webkit - Web content engine library for GTK+
Details
A large number of security issues were discovered in the WebKit browser and
JavaScript engines. If a user were tricked into viewing a malicious
website, a remote attacker could exploit a variety of issues related to web
browser security, including cross-site scripting attacks, denial of
service attacks, and arbitrary code execution.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 12.04
-
libwebkitgtk-1.0-0
-
1.8.3-0ubuntu0.12.04.1
-
libjavascriptcoregtk-1.0-0
-
1.8.3-0ubuntu0.12.04.1
-
libjavascriptcoregtk-3.0-0
-
1.8.3-0ubuntu0.12.04.1
-
libwebkitgtk-3.0-0
-
1.8.3-0ubuntu0.12.04.1
After a standard system update you need to restart your session to make all
the necessary changes.
References
- CVE-2011-3059
- CVE-2011-3060
- CVE-2011-3064
- CVE-2011-3067
- CVE-2012-1521
- CVE-2011-3081
- CVE-2012-3604
- CVE-2012-3674
- CVE-2012-3625
- CVE-2011-3086
- CVE-2011-3090
- CVE-2012-3669
- CVE-2012-3645
- CVE-2012-3671
- CVE-2012-3670
- CVE-2012-3626
- CVE-2012-3611
- CVE-2012-3627
- CVE-2012-3652
- CVE-2012-3612
- CVE-2012-3628
- CVE-2012-3601
- CVE-2012-3617
- CVE-2012-3598
- CVE-2012-3657
- CVE-2012-3672
- CVE-2011-3053
- CVE-2011-3051
- CVE-2011-3076
- CVE-2011-3031
- CVE-2011-3038
- CVE-2011-3042
- CVE-2011-3043
- CVE-2011-3044
- https://launchpad.net/bugs/1058339
- CVE-2012-3674
Related notices
- USN-1524-1: libwebkitgtk-1.0-0, libwebkitgtk-3.0-0, webkit, libjavascriptcoregtk-1.0-0, libjavascriptcoregtk-3.0-0