← Back to branch summary

~ubuntu-security/ubuntu-cve-tracker/master

3465 by Marc Deslauriers
- check-cves run 
1
 
Candidate: CVE-2011-0165

2
 
PublicDate: 2011-03-03

3
 
References:
10729 by Marc Deslauriers
change all mitre urls to https 
4
 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0165
3465 by Marc Deslauriers
- check-cves run 
5
 
 http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html

6
 
Description:

7
 
 WebKit, as used in Apple iTunes before 10.2 on Windows, allows

8
 
 man-in-the-middle attackers to execute arbitrary code or cause a denial of

9
 
 service (memory corruption and application crash) via vectors related to

10
 
 iTunes Store browsing, a different vulnerability than other CVEs listed in

11
 
 APPLE-SA-2011-03-02-1.

12
 
Ubuntu-Description:

13
 
Notes:
4501 by Jamie Strandboge
update webkit boilerplate and README.webkit. boilerplate shouldn't list qt4-x11 
14
 
 jdstrand> qt4-x11 unmaintained upstream (see README.webkit for details)
3465 by Marc Deslauriers
- check-cves run 
15
 
Bugs:

16
 
Priority: medium

17
 
Discovered-by:
6259 by Jamie Strandboge
update flash CVE 
18
 
Assigned-to:
3465 by Marc Deslauriers
- check-cves run 
19
 









20



Patches_webkit:










21



upstream_webkit: needs-triage










22



dapper_webkit: DNE








3688
by Micah Gersten


* Change webkit boilerplate and open CVEs for hardy to ignored (reached end-of-life)



23



hardy_webkit: ignored (reached end-of-life)








3650
by Kees Cook


karmic is EOL



24



karmic_webkit: ignored (reached end-of-life)








6865
by Jamie Strandboge


scripts/cve_lib.py: lucid is now partially supported



25



lucid_webkit: ignored (reached end-of-life)








5094
by Jamie Strandboge


perform EOL checklist (https://wiki.ubuntu.com/SecurityTeam/ReleaseCycle) for



26



maverick_webkit: ignored (reached end-of-life)








5981
by Jamie Strandboge


EOL natty



27



natty_webkit: ignored (reached end-of-life)








6823
by Jamie Strandboge


hardy and oneiric are EOL



28



oneiric_webkit: ignored (reached end-of-life)








12233
by Emily Ratliff


marking webkit CVEs ignored



29



precise_webkit: ignored (no update available)








8065
by Marc Deslauriers


retire quantal. RIP.



30



quantal_webkit: ignored (reached end-of-life)








7689
by Marc Deslauriers


retire raring



31



raring_webkit: ignored (reached end-of-life)








8246
by Marc Deslauriers


retire saucy. RIP.



32



saucy_webkit: ignored (reached end-of-life)








7949
by Marc Deslauriers


updated for trusty release



33



trusty_webkit: DNE








8644
by Seth Arnold


utopic released



34



utopic_webkit: DNE








9373
by Marc Deslauriers


performed release checklist



35



vivid_webkit: DNE








10484.1.15
by Jamie Strandboge


update active/CVE-* for overlay ppas



36



vivid/stable-phone-overlay_webkit: DNE










37



vivid/ubuntu-core_webkit: DNE








10109
by Tyler Hicks


performed release checklist for Wily



38



wily_webkit: DNE








10924
by Tyler Hicks


performed release checklist for Xenial



39



xenial_webkit: DNE








11637
by Steve Beattie


Release cycle process for Yakkety



40



yakkety_webkit: DNE








7853
by Marc Deslauriers


process_cves run



41



devel_webkit: DNE










42












43



Patches_webkitgtk:










44



upstream_webkitgtk: needs-triage










45



lucid_webkitgtk: DNE










46



precise_webkitgtk: DNE










47



quantal_webkitgtk: DNE










48



saucy_webkitgtk: DNE








10806
by Marc Deslauriers


updated ancient CVEs for webkit versions in trusty+



49



trusty_webkitgtk: not-affected (2.4.8-1ubuntu1~ubuntu14.04.1)








9721
by Marc Deslauriers


retire utopic



50



utopic_webkitgtk: ignored (reached end-of-life)








10579
by Marc Deslauriers


retire vivid



51



vivid_webkitgtk: ignored (reached end-of-life)








10484.1.15
by Jamie Strandboge


update active/CVE-* for overlay ppas



52



vivid/stable-phone-overlay_webkitgtk: DNE










53



vivid/ubuntu-core_webkitgtk: DNE








10806
by Marc Deslauriers


updated ancient CVEs for webkit versions in trusty+



54



wily_webkitgtk: not-affected (2.4.9-2ubuntu2)








10924
by Tyler Hicks


performed release checklist for Xenial



55



xenial_webkitgtk: not-affected (2.4.9-2ubuntu2)








11637
by Steve Beattie


Release cycle process for Yakkety



56



yakkety_webkitgtk: not-affected (2.4.9-2ubuntu2)








10806
by Marc Deslauriers


updated ancient CVEs for webkit versions in trusty+



57



devel_webkitgtk: not-affected (2.4.9-2ubuntu2)








3465
by Marc Deslauriers


- check-cves run



58












59



Patches_qt4-x11:










60



upstream_qt4-x11: needs-triage










61



dapper_qt4-x11: not-affected (no webkit)










62



hardy_qt4-x11: not-affected (no webkit)








3650
by Kees Cook


karmic is EOL



63



karmic_qt4-x11: ignored (reached end-of-life)








4501
by Jamie Strandboge


update webkit boilerplate and README.webkit. boilerplate shouldn't list qt4-x11



64



lucid_qt4-x11: ignored (see notes)








3465
by Marc Deslauriers


- check-cves run



65



maverick_qt4-x11: not-affected (webkit isn't built)








3647
by Jamie Strandboge


run scripts/release-cycle-released



66



natty_qt4-x11: not-affected (webkit isn't built)








4240
by Jamie Strandboge


update for oneiric release and precise open



67



oneiric_qt4-x11: not-affected (webkit isn't built)








5154
by Jamie Strandboge


precise is released. Perform release cycle duties



68



precise_qt4-x11: not-affected (webkit isn't built)








5948
by Jamie Strandboge


ReleaseCycle duties for quantal is released and raring opens



69



quantal_qt4-x11: not-affected (webkit isn't built)








6756
by Jamie Strandboge


./scripts/release-cycle-released raring



70



raring_qt4-x11: not-affected (webkit isn't built)








7369
by Jamie Strandboge


perform release cycle duties for saucy



71



saucy_qt4-x11: not-affected (webkit isn't built)








7949
by Marc Deslauriers


updated for trusty release



72



trusty_qt4-x11: not-affected (webkit isn't built)








8644
by Seth Arnold


utopic released



73



utopic_qt4-x11: not-affected (webkit isn't built)








9373
by Marc Deslauriers


performed release checklist



74



vivid_qt4-x11: not-affected (webkit isn't built)








10484.1.15
by Jamie Strandboge


update active/CVE-* for overlay ppas



75



vivid/stable-phone-overlay_qt4-x11: DNE










76



vivid/ubuntu-core_qt4-x11: DNE








10109
by Tyler Hicks


performed release checklist for Wily



77



wily_qt4-x11: not-affected (webkit isn't built)








10924
by Tyler Hicks


performed release checklist for Xenial



78



xenial_qt4-x11: not-affected (webkit isn't built)








11637
by Steve Beattie


Release cycle process for Yakkety



79



yakkety_qt4-x11: not-affected (webkit isn't built)








3465
by Marc Deslauriers


- check-cves run



80



devel_qt4-x11: not-affected (webkit isn't built)










81












82



Patches_qtwebkit-source:










83



upstream_qtwebkit-source: needs-triage










84



dapper_qtwebkit-source: DNE










85



hardy_qtwebkit-source: DNE










86



karmic_qtwebkit-source: DNE










87



lucid_qtwebkit-source: DNE








5094
by Jamie Strandboge


perform EOL checklist (https://wiki.ubuntu.com/SecurityTeam/ReleaseCycle) for



88



maverick_qtwebkit-source: ignored (reached end-of-life)








5981
by Jamie Strandboge


EOL natty



89



natty_qtwebkit-source: ignored (reached end-of-life)








6823
by Jamie Strandboge


hardy and oneiric are EOL



90



oneiric_qtwebkit-source: ignored (reached end-of-life)








12237
by Emily Ratliff


marked CVEs for qtwebkit-source qtwebkit-opensource-src webkitgtk as ignored



91



precise_qtwebkit-source: ignored (no update available)








8065
by Marc Deslauriers


retire quantal. RIP.



92



quantal_qtwebkit-source: ignored (reached end-of-life)








7689
by Marc Deslauriers


retire raring



93



raring_qtwebkit-source: ignored (reached end-of-life)








8246
by Marc Deslauriers


retire saucy. RIP.



94



saucy_qtwebkit-source: ignored (reached end-of-life)








12237
by Emily Ratliff


marked CVEs for qtwebkit-source qtwebkit-opensource-src webkitgtk as ignored



95



trusty_qtwebkit-source: ignored (no update available)








9721
by Marc Deslauriers


retire utopic



96



utopic_qtwebkit-source: ignored (reached end-of-life)








10579
by Marc Deslauriers


retire vivid



97



vivid_qtwebkit-source: ignored (reached end-of-life)








10484.1.15
by Jamie Strandboge


update active/CVE-* for overlay ppas



98



vivid/stable-phone-overlay_qtwebkit-source: DNE










99



vivid/ubuntu-core_qtwebkit-source: DNE








11295
by Tyler Hicks


Perform Wily EOL tasks



100



wily_qtwebkit-source: ignored (reached end-of-life)








12237
by Emily Ratliff


marked CVEs for qtwebkit-source qtwebkit-opensource-src webkitgtk as ignored



101



xenial_qtwebkit-source: ignored (no update available)










102



yakkety_qtwebkit-source: ignored (no update available)










103



devel_qtwebkit-source: ignored (no update available)








3465
by Marc Deslauriers


- check-cves run



104