1
PublicDateAtUSN: 2018-04-03
2
Candidate: CVE-2018-4113
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4113
6
https://support.apple.com/HT208693
7
https://support.apple.com/HT208694
8
https://support.apple.com/HT208695
9
https://support.apple.com/HT208696
10
https://support.apple.com/HT208697
11
https://support.apple.com/HT208698
12
https://webkitgtk.org/security/WSA-2018-0003.html
13
https://usn.ubuntu.com/usn/usn-3635-1
15
An issue was discovered in certain Apple products. iOS before 11.3 is
16
affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is
17
affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is
18
affected. watchOS before 4.3 is affected. The issue involves a
19
JavaScriptCore function in the "WebKit" component. It allows attackers to
20
trigger an assertion failure by leveraging improper array indexing.
23
jdstrand> webkit receives limited support. For details, see
24
https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit
25
jdstrand> webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8
32
upstream_webkitgtk: needs-triage
33
precise/esm_webkitgtk: DNE
34
trusty_webkitgtk: needs-triage
35
xenial_webkitgtk: needs-triage
36
artful_webkitgtk: needs-triage
37
bionic_webkitgtk: needs-triage
38
devel_webkitgtk: needs-triage
41
upstream_webkit2gtk: released (2.20.0)
42
precise/esm_webkit2gtk: DNE
43
trusty_webkit2gtk: DNE
44
xenial_webkit2gtk: released (2.20.1-0ubuntu0.16.04.1)
45
artful_webkit2gtk: released (2.20.1-0ubuntu0.17.10.1)
46
bionic_webkit2gtk: not-affected (2.20.0-2)
47
devel_webkit2gtk: not-affected (2.20.0-2)
49
Patches_qtwebkit-source:
50
upstream_qtwebkit-source: needs-triage
51
precise/esm_qtwebkit-source: DNE
52
trusty_qtwebkit-source: needs-triage
53
xenial_qtwebkit-source: needs-triage
54
artful_qtwebkit-source: needs-triage
55
bionic_qtwebkit-source: needs-triage
56
devel_qtwebkit-source: needs-triage
58
Patches_qtwebkit-opensource-src: needs-triage
59
upstream_qtwebkit-opensource-src: needs-triage
60
precise/esm_qtwebkit-opensource-src: DNE
61
trusty_qtwebkit-opensource-src: needs-triage
62
xenial_qtwebkit-opensource-src: needs-triage
63
artful_qtwebkit-opensource-src: needs-triage
64
bionic_qtwebkit-opensource-src: needs-triage
65
devel_qtwebkit-opensource-src: needs-triage