漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines.
漏洞危害
If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
解决方案
Refer to Ubuntu advisory USN-3303-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3303-1: 16.10 (Yakkety) on src (libjavascriptcoregtk-4.0-18)
USN-3303-1: 16.04 (Xenial) on src (libwebkit2gtk-4.0-37)
USN-3303-1: 17.04 (zesty) on src (libjavascriptcoregtk-4.0-18)
USN-3303-1: 17.04 (zesty) on src (libwebkit2gtk-4.0-37)
USN-3303-1: 16.10 (Yakkety) on src (libwebkit2gtk-4.0-37)
USN-3303-1: 16.04 (Xenial) on src (libjavascriptcoregtk-4.0-18)
0daybank
文章评论