Oval Definition:	oval:com.ubuntu.xenial:def:201537520000000
Revision Date: 2015-08-16 Version: 1 Title: CVE-2015-3752 on Ubuntu 16.04 LTS (xenial) - medium. Description: The Content Security Policy implementation in WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, does not properly restrict cookie transmission for report requests, which allows remote attackers to obtain sensitive information via vectors involving (1) a cross-origin request or (2) a private-browsing request. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-3752 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information qtwebkit-opensource-src: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'no update available'). OR qtwebkit-source: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'no update available'). OR webkitgtk package in xenial was vulnerable but has been fixed (note: '2.4.10-0ubuntu1').
BACK