[Git][security-tracker-team/security-tracker][master] webkit updates

Moritz Muehlenhoff jmm at debian.org
Thu Jun 14 23:28:34 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8b60b0cf by Moritz Muehlenhoff at 2018-06-15T00:27:50+02:00
webkit updates

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -273,8 +273,14 @@ CVE-2018-12295
 	RESERVED
 CVE-2018-12294
 	RESERVED
+	- webkit2gtk 2.20.2-1 (unimportant)
+	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-12293
 	RESERVED
+	- webkit2gtk 2.20.3-1 (unimportant)
+	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-12292 (A use-after-free vulnerability exists in ...)
 	NOT-FOR-US: Pale Moon
 CVE-2018-12290 (The Yii2-StateMachine extension v2.x.x for Yii2 has XSS. ...)
@@ -1599,11 +1605,13 @@ CVE-2018-11713 (WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in 
 	NOTE: https://bugs.webkit.org/show_bug.cgi?id=126384
 	NOTE: https://trac.webkit.org/changeset/228088/webkit
 	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-11712 (WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the ...)
 	- webkit2gtk 2.20.2-1 (unimportant)
 	NOTE: https://bugs.webkit.org/show_bug.cgi?id=184804
 	NOTE: https://trac.webkit.org/changeset/230886/webkit
 	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-11711 (A remote attacker can bypass the System Manager Mode on the Canon MF210 ...)
 	NOT-FOR-US: Canon MF210 and MF220 web interface
 CVE-2018-11710 (soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers ...)
@@ -1799,6 +1807,7 @@ CVE-2018-11646 (webkitFaviconDatabaseSetIconForPageURL and ...)
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=795740 but is a
 	NOTE: different issue.
 	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-11645 (psi/zfile.c in Artifex Ghostscript before 9.21rc1 permits the status ...)
 	- ghostscript 9.21~dfsg-1 (low)
 	[stretch] - ghostscript <postponed> (Be be fixed along in future update)
@@ -21779,9 +21788,11 @@ CVE-2018-4234 (An issue was discovered in certain Apple products. macOS before .
 CVE-2018-4233 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	- webkit2gtk 2.20.3-1 (unimportant)
 	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-4232 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	- webkit2gtk 2.20.3-1 (unimportant)
 	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-4231
 	RESERVED
 CVE-2018-4230 (An issue was discovered in certain Apple products. macOS before ...)
@@ -21803,6 +21814,7 @@ CVE-2018-4223 (An issue was discovered in certain Apple products. iOS before 11.
 CVE-2018-4222 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	- webkit2gtk 2.20.3-1 (unimportant)
 	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-4221 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	NOT-FOR-US: Apple
 CVE-2018-4220 (An issue was discovered in certain Apple products. Swift before 4.1.1 ...)
@@ -21812,6 +21824,7 @@ CVE-2018-4219 (An issue was discovered in certain Apple products. macOS before .
 CVE-2018-4218 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	- webkit2gtk 2.20.3-1 (unimportant)
 	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-4217
 	RESERVED
 CVE-2018-4216
@@ -21819,7 +21832,9 @@ CVE-2018-4216
 CVE-2018-4215 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	NOT-FOR-US: Apple
 CVE-2018-4214 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
-	TODO: check
+	- webkit2gtk 2.20.0-2 (unimportant)
+	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-4213
 	RESERVED
 CVE-2018-4212
@@ -21847,7 +21862,9 @@ CVE-2018-4203
 CVE-2018-4202 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	NOT-FOR-US: Apple (iBooks component)
 CVE-2018-4201 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
-	TODO: check
+	- webkit2gtk 2.20.1-2 (unimportant)
+	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-4200 (An issue was discovered in certain Apple products. iOS before 11.3.1 ...)
 	- webkit2gtk 2.20.2-1 (unimportant)
 	NOTE: https://webkitgtk.org/security/WSA-2018-0004.html
@@ -21855,6 +21872,7 @@ CVE-2018-4200 (An issue was discovered in certain Apple products. iOS before 11.
 CVE-2018-4199 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	- webkit2gtk 2.20.3-1 (unimportant)
 	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-4198 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	NOT-FOR-US: Apple (UIKit component)
 CVE-2018-4197
@@ -21868,12 +21886,15 @@ CVE-2018-4194
 CVE-2018-4193 (An issue was discovered in certain Apple products. macOS before ...)
 	NOT-FOR-US: Apple (Windows Server component)
 CVE-2018-4192 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
-	TODO: check
+	- webkit2gtk 2.20.1-1 (unimportant)
+	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-4191
 	RESERVED
 CVE-2018-4190 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
 	- webkit2gtk 2.20.3-1 (unimportant)
 	NOTE: Not covered by security support
+	NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
 CVE-2018-4189
 	RESERVED
 CVE-2018-4188 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b60b0cf05f259a1a09bebbbcb19629604420742

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b60b0cf05f259a1a09bebbbcb19629604420742
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180614/c7df2bde/attachment.html>

More information about the debian-security-tracker-commits mailing list