CVE-2016-9642 log

Source
Severity Medium
Remote Yes
Type Denial of service
Description
JavaScriptCore in WebKitGTK+ before 2.16.0 allows attackers to cause a denial of service (out-of-bounds heap read) via a crafted Javascript file.
Group Package Affected Fixed Severity Status Ticket
AVG-234 webkitgtk, webkitgtk2 2.4.11-6 Critical Unknown
AVG-235 webkit2gtk 2.14.5-1 2.16.1-1 Critical Fixed
Date Advisory Group Package Severity Description
28 Apr 2017 ASA-201704-9 AVG-235 webkit2gtk Critical multiple issues
References
https://webkitgtk.org/security/WSA-2017-0003.html
Notes
Fixed in 2.14.6 / 2.16.0.