CVE-2011-1190 in Ubuntu

CVE-2011-1190

Priority

Medium

Description

The Web Workers implementation in Google Chrome before 10.0.648.127 allows
remote attackers to bypass the Same Origin Policy via unspecified vectors,
related to an "error message leak."

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1190

Notes

jdstrand> qt4-x11 unmaintained upstream (see README.webkit for details)

Package

Source: webkit (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 8.04 LTS (Hardy Heron):	ignored (reached end-of-life)
Ubuntu 10.04 LTS (Lucid Lynx):	needs-triage
Ubuntu 11.10 (Oneiric Ocelot):	ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):	needs-triage
Ubuntu 12.10 (Quantal Quetzal):	needs-triage
Ubuntu 13.04 (Raring Ringtail):	needs-triage
Ubuntu 13.10 (Saucy Salamander):	needs-triage

Patches:

Upstream:

http://trac.webkit.org/changeset/77563

Package

Source: qtwebkit-source (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 8.04 LTS (Hardy Heron):	DNE
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 11.10 (Oneiric Ocelot):	ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):	needs-triage
Ubuntu 12.10 (Quantal Quetzal):	needs-triage
Ubuntu 13.04 (Raring Ringtail):	needs-triage
Ubuntu 13.10 (Saucy Salamander):	needs-triage

Package

Source: qt4-x11 (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 8.04 LTS (Hardy Heron):	not-affected (no webkit)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (see notes)
Ubuntu 11.10 (Oneiric Ocelot):	not-affected (webkit isn't built)
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (webkit isn't built)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (webkit isn't built)
Ubuntu 13.04 (Raring Ringtail):	not-affected (webkit isn't built)
Ubuntu 13.10 (Saucy Salamander):	not-affected (webkit isn't built)

Package

Source: chromium-browser (LP Ubuntu Debian)

Upstream:	released (10.0.648.127)
Ubuntu 8.04 LTS (Hardy Heron):	DNE
Ubuntu 10.04 LTS (Lucid Lynx):	released (3.0.1271.97-0ubuntu0.10.04.1)
Ubuntu 11.10 (Oneiric Ocelot):	released (3.0.1271.97-0ubuntu0.11.10.1)
Ubuntu 12.04 LTS (Precise Pangolin):	released (3.0.1271.97-0ubuntu0.12.04.1)
Ubuntu 12.10 (Quantal Quetzal):	released (3.0.1271.97-0ubuntu0.12.10.1)
Ubuntu 13.04 (Raring Ringtail):	released (10.0.648.127~r76697-0ubuntu1)
Ubuntu 13.10 (Saucy Salamander):	released (10.0.648.127~r76697-0ubuntu1)

More Information

Updated: 2013-05-09 15:15:24 UTC (commit 6824)