Bug#586547: webkit: CVE-2010-2304 memory corruption in rendering of list markers
Nico Golde
nion at debian.org
Sun Jun 20 13:10:27 UTC 2010
Package: webkit
Severity: grave
Tags: security patch
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for webkit.
CVE-2010-2304[0]:
| The toAlphabetic function in rendering/RenderListMarker.cpp in WebCore
| in WebKit in Google Chrome before 5.0.375.70 allows remote attackers
| to cause a denial of service (memory corruption) or possibly execute
| arbitrary code via vectors related to list markers, aka rdar problem
| 8009118.
If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.
The upstream patch to fix this issue applies fine to the version in Debian
and is available on:
http://src.chromium.org/viewvc/chrome/branches/WebKit/375/WebCore/rendering/RenderListMarker.cpp?r1=48100&r2=48099
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2304
http://security-tracker.debian.org/tracker/CVE-2010-2304
--
Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-webkit-maintainers/attachments/20100620/d8724fca/attachment.pgp>
More information about the Pkg-webkit-maintainers
mailing list