1
PublicDateAtUSN: 2015-05-07
2
Candidate: CVE-2015-1155
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1155
6
https://support.apple.com/HT204826
7
http://lists.apple.com/archives/security-announce/2015/May/msg00000.html
8
https://usn.ubuntu.com/usn/usn-2937-1
10
The history implementation in WebKit, as used in Apple Safari before 6.2.6,
11
7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to bypass
12
the Same Origin Policy and read arbitrary files via a crafted web site.
15
jdstrand> webkit receives limited support. For details, see
16
https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit
17
jdstrand> webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8
24
upstream_webkit: needs-triage
25
precise_webkit: ignored (see notes)
29
vivid/stable-phone-overlay_webkit: DNE
30
vivid/ubuntu-core_webkit: DNE
37
upstream_webkitgtk: needs-triage
38
precise_webkitgtk: DNE
39
trusty_webkitgtk: released (2.4.10-0ubuntu0.14.04.1)
40
utopic_webkitgtk: ignored (reached end-of-life)
41
vivid_webkitgtk: ignored (reached end-of-life)
42
vivid/stable-phone-overlay_webkitgtk: DNE
43
vivid/ubuntu-core_webkitgtk: DNE
44
wily_webkitgtk: released (2.4.10-0ubuntu0.15.10.1)
45
xenial_webkitgtk: released (2.4.10-0ubuntu1)
46
yakkety_webkitgtk: released (2.4.10-0ubuntu1)
47
devel_webkitgtk: released (2.4.10-0ubuntu1)
49
Patches_qtwebkit-source:
50
upstream_qtwebkit-source: needs-triage
51
precise_qtwebkit-source: ignored (see notes)
52
trusty_qtwebkit-source: ignored (no update available)
53
utopic_qtwebkit-source: ignored (reached end-of-life)
54
vivid_qtwebkit-source: ignored (reached end-of-life)
55
vivid/stable-phone-overlay_qtwebkit-source: DNE
56
vivid/ubuntu-core_qtwebkit-source: DNE
57
wily_qtwebkit-source: ignored (reached end-of-life)
58
xenial_qtwebkit-source: ignored (no update available)
59
yakkety_qtwebkit-source: ignored (no update available)
60
devel_qtwebkit-source: ignored (no update available)
62
Patches_qtwebkit-opensource-src: needs-triage
63
upstream_qtwebkit-opensource-src: needs-triage
64
precise_qtwebkit-opensource-src: DNE
65
trusty_qtwebkit-opensource-src: ignored (no update available)
66
utopic_qtwebkit-opensource-src: ignored (reached end-of-life)
67
vivid_qtwebkit-opensource-src: ignored (reached end-of-life)
68
vivid/stable-phone-overlay_qtwebkit-opensource-src: DNE
69
vivid/ubuntu-core_qtwebkit-opensource-src: DNE
70
wily_qtwebkit-opensource-src: ignored (reached end-of-life)
71
xenial_qtwebkit-opensource-src: ignored (no update available)
72
yakkety_qtwebkit-opensource-src: ignored (no update available)
73
devel_qtwebkit-opensource-src: ignored (no update available)