1
PublicDateAtUSN: 2017-04-01
2
Candidate: CVE-2017-2468
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2468
6
https://support.apple.com/HT207600
7
https://support.apple.com/HT207601
8
https://support.apple.com/HT207617
9
https://www.webkitgtk.org/security/WSA-2017-0003.html
10
https://usn.ubuntu.com/usn/usn-3257-1
12
An issue was discovered in certain Apple products. iOS before 10.3 is
13
affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The
14
issue involves the "WebKit" component. It allows remote attackers to
15
execute arbitrary code or cause a denial of service (memory corruption and
16
application crash) via a crafted web site.
19
jdstrand> webkit receives limited support. For details, see
20
https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit
21
jdstrand> webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8
28
upstream_webkit: needs-triage
29
precise_webkit: ignored (see notes)
30
precise/esm_webkit: DNE (precise was ignored [see notes])
32
vivid/ubuntu-core_webkit: DNE
33
vivid/stable-phone-overlay_webkit: DNE
42
upstream_webkitgtk: needs-triage
43
precise_webkitgtk: DNE
44
precise/esm_webkitgtk: DNE
45
trusty_webkitgtk: needs-triage
46
vivid/ubuntu-core_webkitgtk: DNE
47
vivid/stable-phone-overlay_webkitgtk: DNE
48
xenial_webkitgtk: needs-triage
49
yakkety_webkitgtk: ignored (reached end-of-life)
50
zesty_webkitgtk: ignored (reached end-of-life)
51
artful_webkitgtk: needs-triage
52
bionic_webkitgtk: needs-triage
53
devel_webkitgtk: needs-triage
56
upstream_webkit2gtk: released (2.14.6)
57
precise_webkit2gtk: DNE
58
precise/esm_webkit2gtk: DNE
59
trusty_webkit2gtk: DNE
60
vivid/ubuntu-core_webkit2gtk: DNE
61
vivid/stable-phone-overlay_webkit2gtk: DNE
62
xenial_webkit2gtk: released (2.16.1-0ubuntu0.16.04.1)
63
yakkety_webkit2gtk: released (2.16.1-0ubuntu0.16.10.1)
64
zesty_webkit2gtk: not-affected (2.16.1-1)
65
artful_webkit2gtk: not-affected (2.16.1-1)
66
bionic_webkit2gtk: not-affected (2.16.1-1)
67
devel_webkit2gtk: not-affected (2.16.1-1)
69
Patches_qtwebkit-source:
70
upstream_qtwebkit-source: needs-triage
71
precise_qtwebkit-source: ignored (see notes)
72
precise/esm_qtwebkit-source: DNE (precise was ignored [see notes])
73
trusty_qtwebkit-source: needs-triage
74
vivid/ubuntu-core_qtwebkit-source: DNE
75
vivid/stable-phone-overlay_qtwebkit-source: DNE
76
xenial_qtwebkit-source: needs-triage
77
yakkety_qtwebkit-source: ignored (reached end-of-life)
78
zesty_qtwebkit-source: ignored (reached end-of-life)
79
artful_qtwebkit-source: needs-triage
80
bionic_qtwebkit-source: needs-triage
81
devel_qtwebkit-source: needs-triage
83
Patches_qtwebkit-opensource-src: needs-triage
84
upstream_qtwebkit-opensource-src: needs-triage
85
precise_qtwebkit-opensource-src: DNE
86
precise/esm_qtwebkit-opensource-src: DNE
87
trusty_qtwebkit-opensource-src: needs-triage
88
vivid/ubuntu-core_qtwebkit-opensource-src: DNE
89
vivid/stable-phone-overlay_qtwebkit-opensource-src: DNE
90
xenial_qtwebkit-opensource-src: needs-triage
91
yakkety_qtwebkit-opensource-src: ignored (reached end-of-life)
92
zesty_qtwebkit-opensource-src: ignored (reached end-of-life)
93
artful_qtwebkit-opensource-src: needs-triage
94
bionic_qtwebkit-opensource-src: needs-triage
95
devel_qtwebkit-opensource-src: needs-triage