[USN-1524-1] WebKit vulnerabilities

Micah Gersten micah at canonical.com
Wed Aug 8 20:47:42 UTC 2012

Ubuntu Security Notice USN-1524-1
August 08, 2012

webkit vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.04 LTS


Multiple security vulnerabilities were fixed in WebKit.

Software Description:
- webkit: Web content engine library for GTK+


A large number of security issues were discovered in the WebKit browser and
JavaScript engines. If a user were tricked into viewing a malicious
website, a remote attacker could exploit a variety of issues related to web
browser security, including cross-site scripting attacks, denial of
service attacks, and arbitrary code execution.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 LTS:
  libjavascriptcoregtk-1.0-0      1.8.1-0ubuntu0.12.04.1
  libjavascriptcoregtk-3.0-0      1.8.1-0ubuntu0.12.04.1
  libwebkitgtk-1.0-0              1.8.1-0ubuntu0.12.04.1
  libwebkitgtk-3.0-0              1.8.1-0ubuntu0.12.04.1

After a standard system update you need to restart your session to make all
the necessary changes.

  CVE-2011-3046, CVE-2011-3050, CVE-2011-3067, CVE-2011-3068,
  CVE-2011-3069, CVE-2011-3071, CVE-2011-3073, CVE-2011-3074,
  CVE-2011-3075, CVE-2011-3078, CVE-2012-0672, CVE-2012-3615,
  CVE-2012-3655, CVE-2012-3656, CVE-2012-3680, https://launchpad.net/bugs/1027283

Package Information:

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/ubuntu-security-announce/attachments/20120808/75607fb6/attachment.pgp>

More information about the ubuntu-security-announce mailing list