*** This bug is a security vulnerability *** Public security bug reported:
Trusty still has 2.4.8, which is vulnerable. http://webkitgtk.org/2016/03/14/webkitgtk2.4.10-released.html This is a bug fix release in the stable 2.4 series. - Fix rendering of form controls and scrollbars with GTK+ >= 3.19 - Fix crashes on PPC64. - Fix the build on powerpc 32 bits. - Add ARM64 build support. - Translation updates: German, Spanish, French, Italian, Korean, Brazilian Portuguese, Russian, Chinese. - Security fixes: CVE-2015-1120, CVE-2015-1076, CVE-2015-1071, CVE-2015-1081, CVE-2015-1122, CVE-2015-1155, CVE-2014-1748, CVE-2015-3752, CVE-2015-5809, CVE-2015-5928, CVE-2015-3749, CVE-2015-3659, CVE-2015-3748, CVE-2015-3743, CVE-2015-3731, CVE-2015-3745, CVE-2015-5822, CVE-2015-3658, CVE-2015-3741, CVE-2015-3727, CVE-2015-5801, CVE-2015-5788, CVE-2015-3747, CVE-2015-5794, CVE-2015-1127, CVE-2015-1153, CVE-2015-1083. ** Affects: webkitgtk (Ubuntu) Importance: Undecided Status: New ** Tags: trusty upgrade-software-version ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2015-1120 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2015-1076 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2015-1071 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2015-1081 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2015-1122 ** Information type changed from Private Security to Public Security ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2015-1155 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-1748 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1556964 Title: [SRU] Update to bugfix release 2.4.10 in Trusty To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/webkitgtk/+bug/1556964/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
