webkit2gtk: Multiple vulnerabilities (CVE-2017-5753, CVE-2017-5715, CVE-2018-4088, CVE-2018-4096, CVE-2017-7153, CVE-2017-7160, CVE-2017-7161, CVE-2017-7165, CVE-2017-13884, CVE-2017-13885)
CVE-2017-5753
Versions affected: WebKitGTK+ before 2.18.5.
Impact: Systems with microprocessors utilizing speculative execution and
branch prediction may allow
unauthorized disclosure of information to an attacker via a side-channel
analysis. This variant of the
Spectre vulnerability triggers the speculative execution by performing a
bounds-check bypass.
Description: Security improvements are included to mitigate the effects.
CVE-2017-5715
Versions affected: WebKitGTK+ before 2.18.5.
Impact: Systems with microprocessors utilizing speculative execution and
branch prediction may allow
unauthorized disclosure of information to an attacker via a side-channel
analysis. This variant of the
Spectre vulnerability triggers the speculative execution by utilizing
branch target injection.
Description: Security improvements are included to mitigate the effects.
References:
https://webkitgtk.org/security/WSA-2018-0001.html
CVE-2018-4088
Versions affected: WebKitGTK+ before 2.18.6.
Impact: Processing maliciously crafted web content may lead to arbitrary
code execution.
Description: Multiple memory corruption issues were addressed with
improved memory handling.
CVE-2018-4096
Versions affected: WebKitGTK+ before 2.18.6.
Impact: Processing maliciously crafted web content may lead to arbitrary
code execution.
Description: Multiple memory corruption issues were addressed with
improved memory handling.
CVE-2017-7153
Versions affected: WebKitGTK+ before 2.18.6.
Impact: Visiting a malicious website may lead to user interface
spoofing.
Description: Redirect responses to 401 Unauthorized may allow a
malicious website to incorrectly
display the lock icon on mixed content. This issue was addressed through
improved URL display logic.
CVE-2017-7160
Versions affected: WebKitGTK+ before 2.18.6.
Impact: Processing maliciously crafted web content may lead to arbitrary
code execution.
Description: Multiple memory corruption issues were addressed with
improved memory handling.
CVE-2017-7161
Versions affected: WebKitGTK+ before 2.18.6.
Impact: Processing maliciously crafted web content may lead to arbitrary
code execution.
Description: A command injection issue existed in Web Inspector. This
issue was addressed through
improved escaping of special characters.
CVE-2017-7165
Versions affected: WebKitGTK+ before 2.18.6.
Impact: Processing maliciously crafted web content may lead to arbitrary
code execution.
Description: Multiple memory corruption issues were addressed with
improved memory handling.
CVE-2017-13884
Versions affected: WebKitGTK+ before 2.18.6.
Impact: Processing maliciously crafted web content may lead to arbitrary
code execution.
Description: Multiple memory corruption issues were addressed with
improved memory handling.
CVE-2017-13885
Versions affected: WebKitGTK+ before 2.18.6.
Impact: Processing maliciously crafted web content may lead to arbitrary
code execution.
Description: Multiple memory corruption issues were addressed with
improved memory handling.
References:
https://webkitgtk.org/security/WSA-2018-0002.html
(from redmine: issue id 8509, created on 2018-02-20, closed on 2018-02-20)
- Relations:
- child #8510 (closed)
- child #8512 (closed)