Oval Definition:oval:org.mitre.oval:def:21433
Revision Date:2014-02-24Version:394
Title:RHSA-2011:0177: webkitgtk security update (Moderate)
Description:The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion."
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-1780
CVE-2010-1782
CVE-2010-1783
CVE-2010-1784
CVE-2010-1785
CVE-2010-1786
CVE-2010-1787
CVE-2010-1788
CVE-2010-1790
CVE-2010-1792
CVE-2010-1793
CVE-2010-1807
CVE-2010-1812
CVE-2010-1814
CVE-2010-1815
CVE-2010-3113
CVE-2010-3114
CVE-2010-3115
CVE-2010-3116
CVE-2010-3119
CVE-2010-3255
CVE-2010-3257
CVE-2010-3259
CVE-2010-3812
CVE-2010-3813
CVE-2010-4197
CVE-2010-4198
CVE-2010-4204
CVE-2010-4206
CVE-2010-4577
RHSA-2011:0177-01
Platform(s):Red Hat Enterprise Linux 6
Product(s):webkitgtk
Definition Synopsis
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • AND Packages section
  • webkitgtk is earlier than 0:1.2.6-2.el6_0
  • OR webkitgtk-doc is earlier than 0:1.2.6-2.el6_0
  • OR webkitgtk-devel is earlier than 0:1.2.6-2.el6_0
    • BACK