CVE-2008-3632

Priority
Medium
Description
Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through
2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute
arbitrary code or cause a denial of service (application crash) via a web
page with crafted Cascading Style Sheets (CSS) import statements.
References
Assigned-to
micahg
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):ignored (reached end-of-life)
Ubuntu 10.04 LTS (Lucid Lynx):not-affected (1.0.1-4)
Ubuntu 11.04 (Natty Narwhal):not-affected (1.0.1-4)
Ubuntu 11.10 (Oneiric Ocelot):not-affected (1.0.1-4)
Patches:
Upstream:http://trac.webkit.org/changeset/34815
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):not-affected (< 4.4.0)
Ubuntu 10.04 LTS (Lucid Lynx):not-affected (4.4.3-1ubuntu3)
Ubuntu 11.04 (Natty Narwhal):not-affected (4.4.3-1ubuntu3)
Ubuntu 11.10 (Oneiric Ocelot):not-affected (4.4.3-1ubuntu3)
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:19:00 UTC (commit 5347)