Bug#700164: [Secure-testing-team] Bug#700164: src:webkit: first pile of 2013 CVEs

Michael Gilbert mgilbert at debian.org
Sat Feb 9 22:00:04 UTC 2013

control: severity -1 important

> Please verify which of them (if any) actually apply to Debian's version
> of webkit. All of the appear to apply to some kind of memory corruption
> or access restriction bypass which makes them good candidates. If they
> turn out not to pose a risk for the user, please downgrade this bug.

As stated in the release notes, the src:webkit package will not get
any security support during the wheezy release unfortunately.  This is
due to lack of any stable upstream security releases.

Best wishes,

More information about the Pkg-webkit-maintainers mailing list