Oval Definition:	oval:com.ubuntu.xenial:def:201536580000000
Revision Date: 2015-07-03 Version: 1 Title: CVE-2015-3658 on Ubuntu 16.04 LTS (xenial) - medium. Description: The Page Loading functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly consider redirects during decisions about sending an Origin header, which makes it easier for remote attackers to bypass CSRF protection mechanisms via a crafted web site. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-3658 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information qtwebkit-opensource-src: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'no update available'). OR qtwebkit-source: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'no update available'). OR webkitgtk package in xenial was vulnerable but has been fixed (note: '2.4.10-0ubuntu1').
BACK