1
Candidate: CVE-2016-10226
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10226
6
JavaScriptCore in WebKit, as distributed in Safari Technology Preview
7
Release 18, allows remote attackers to cause a denial of service (bitfield
8
out-of-bounds read and application crash) via crafted JavaScript code that
9
is mishandled in the operatorString function, related to
10
assembler/MacroAssemblerARM64.h, assembler/MacroAssemblerX86Common.h, and
11
wasm/WasmB3IRGenerator.cpp.
14
jdstrand> webkit receives limited support. For details, see
15
https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit
16
jdstrand> webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8
18
https://bugs.webkit.org/show_bug.cgi?id=165091
24
upstream: https://trac.webkit.org/changeset/209295
25
upstream_webkit: needs-triage
26
precise_webkit: ignored (see notes)
27
precise/esm_webkit: DNE (precise was ignored [see notes])
29
vivid/ubuntu-core_webkit: DNE
30
vivid/stable-phone-overlay_webkit: DNE
39
upstream_webkitgtk: needs-triage
40
precise_webkitgtk: DNE
41
precise/esm_webkitgtk: DNE
42
trusty_webkitgtk: needs-triage
43
vivid/ubuntu-core_webkitgtk: DNE
44
vivid/stable-phone-overlay_webkitgtk: DNE
45
xenial_webkitgtk: not-affected
46
yakkety_webkitgtk: not-affected
47
zesty_webkitgtk: not-affected
48
artful_webkitgtk: not-affected
49
bionic_webkitgtk: not-affected
50
devel_webkitgtk: not-affected
53
upstream_webkit2gtk: needs-triage
54
precise_webkit2gtk: DNE
55
precise/esm_webkit2gtk: DNE
56
trusty_webkit2gtk: DNE
57
vivid/ubuntu-core_webkit2gtk: DNE
58
vivid/stable-phone-overlay_webkit2gtk: DNE
59
xenial_webkit2gtk: not-affected
60
yakkety_webkit2gtk: not-affected
61
zesty_webkit2gtk: not-affected
62
artful_webkit2gtk: not-affected
63
bionic_webkit2gtk: not-affected
64
devel_webkit2gtk: not-affected
66
Patches_qtwebkit-source:
67
upstream_qtwebkit-source: needs-triage
68
precise_qtwebkit-source: ignored (see notes)
69
precise/esm_qtwebkit-source: DNE (precise was ignored [see notes])
70
trusty_qtwebkit-source: needs-triage
71
vivid/ubuntu-core_qtwebkit-source: DNE
72
vivid/stable-phone-overlay_qtwebkit-source: DNE
73
xenial_qtwebkit-source: needs-triage
74
yakkety_qtwebkit-source: ignored (reached end-of-life)
75
zesty_qtwebkit-source: ignored (reached end-of-life)
76
artful_qtwebkit-source: needs-triage
77
bionic_qtwebkit-source: needs-triage
78
devel_qtwebkit-source: needs-triage
80
Patches_qtwebkit-opensource-src: needs-triage
81
upstream_qtwebkit-opensource-src: needs-triage
82
precise_qtwebkit-opensource-src: DNE
83
precise/esm_qtwebkit-opensource-src: DNE
84
trusty_qtwebkit-opensource-src: needs-triage
85
vivid/ubuntu-core_qtwebkit-opensource-src: DNE
86
vivid/stable-phone-overlay_qtwebkit-opensource-src: DNE
87
xenial_qtwebkit-opensource-src: needs-triage
88
yakkety_qtwebkit-opensource-src: ignored (reached end-of-life)
89
zesty_qtwebkit-opensource-src: ignored (reached end-of-life)
90
artful_qtwebkit-opensource-src: needs-triage
91
bionic_qtwebkit-opensource-src: needs-triage
92
devel_qtwebkit-opensource-src: needs-triage