CVE-2016-9642 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Denial of service |
| Description | JavaScriptCore in WebKitGTK+ before 2.16.0 allows attackers to cause a denial of service (out-of-bounds heap read) via a crafted Javascript file. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-234 | webkitgtk, webkitgtk2 | 2.4.11-6 | Critical | Unknown | ||
| AVG-235 | webkit2gtk | 2.14.5-1 | 2.16.1-1 | Critical | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 28 Apr 2017 | ASA-201704-9 | AVG-235 | webkit2gtk | Critical | multiple issues |
| References |
|---|
https://webkitgtk.org/security/WSA-2017-0003.html |
| Notes |
|---|
Fixed in 2.14.6 / 2.16.0. |