Vulnerability CVE-2015-5928: Information
Description
WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-10-21-1, APPLE-SA-2015-10-21-3, and APPLE-SA-2015-10-21-5.
Severity: MEDIUM (6.8)
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
|---|---|---|---|---|---|---|
| libwebkitgtk2 | p10 | 2.4.11-alt1 | 2.4.11-alt13 | ALT-PU-2016-1315-1 | 162826 | Fixed |
| libwebkitgtk2 | p9 | 2.4.11-alt1 | 2.4.11-alt10 | ALT-PU-2016-1315-1 | 162826 | Fixed |
| libwebkitgtk2 | c10f1 | 2.4.11-alt1 | 2.4.11-alt13 | ALT-PU-2016-1315-1 | 162826 | Fixed |
| libwebkitgtk2 | c9f2 | 2.4.11-alt1 | 2.4.11-alt10 | ALT-PU-2016-1315-1 | 162826 | Fixed |
| libwebkitgtk3 | p10 | 2.4.10-alt1 | 2.4.11-alt12 | ALT-PU-2016-1245-1 | 161352 | Fixed |
| libwebkitgtk3 | p9 | 2.4.10-alt1 | 2.4.11-alt9.1.p9 | ALT-PU-2016-1245-1 | 161352 | Fixed |
| libwebkitgtk3 | c10f1 | 2.4.10-alt1 | 2.4.11-alt12 | ALT-PU-2016-1245-1 | 161352 | Fixed |
| libwebkitgtk3 | c9f2 | 2.4.10-alt1 | 2.4.11-alt9.1.p9 | ALT-PU-2016-1245-1 | 161352 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
|---|---|
| APPLE-SA-2015-10-21-1 |
|
| APPLE-SA-2015-10-21-3 |
|
| APPLE-SA-2015-10-21-5 |
|
| https://support.apple.com/HT205372 |
|
| https://support.apple.com/HT205377 |
|
| https://support.apple.com/HT205370 |
|
| 77267 | |
| openSUSE-SU-2016:0915 | |
| USN-2937-1 | |
| 1033929 |