Candidate: CVE-2011-1290 PublicDate: 2011-03-11 21:57:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1290 Description: Integer overflow in WebKit, as used on the Research In Motion (RIM) BlackBerry Torch 9800 with firmware 6.0.0.246, in Google Chrome before 10.0.648.133, and in Apple Safari before 5.0.5, allows remote attackers to execute arbitrary code via unknown vectors related to CSS "style handling," nodesets, and a length value, as demonstrated by Vincenzo Iozzo, Willem Pinckaers, and Ralf-Philipp Weinmann during a Pwn2Own competition at CanSecWest 2011. Ubuntu-Description: Notes: jdstrand> qt4-x11 unmaintained upstream (see README.webkit for details) Bugs: Priority: medium Discovered-by: Assigned-to: CVSS: Patches_webkit: upstream_webkit: needs-triage dapper_webkit: DNE hardy_webkit: ignored (reached end-of-life) karmic_webkit: ignored (reached end-of-life) lucid_webkit: ignored (reached end-of-life) maverick_webkit: ignored (reached end-of-life) natty_webkit: ignored (reached end-of-life) oneiric_webkit: ignored (reached end-of-life) precise_webkit: ignored (no update available) quantal_webkit: ignored (reached end-of-life) raring_webkit: ignored (reached end-of-life) saucy_webkit: ignored (reached end-of-life) trusty_webkit: DNE trusty/esm_webkit: DNE utopic_webkit: DNE vivid_webkit: DNE vivid/stable-phone-overlay_webkit: DNE vivid/ubuntu-core_webkit: DNE wily_webkit: DNE xenial_webkit: DNE yakkety_webkit: DNE devel_webkit: DNE Patches_webkitgtk: upstream_webkitgtk: needs-triage lucid_webkitgtk: DNE precise_webkitgtk: DNE quantal_webkitgtk: DNE saucy_webkitgtk: DNE trusty_webkitgtk: not-affected (2.4.8-1ubuntu1~ubuntu14.04.1) trusty/esm_webkitgtk: DNE (trusty was not-affected [2.4.8-1ubuntu1~ubuntu14.04.1]) utopic_webkitgtk: ignored (reached end-of-life) vivid_webkitgtk: ignored (reached end-of-life) vivid/stable-phone-overlay_webkitgtk: DNE vivid/ubuntu-core_webkitgtk: DNE wily_webkitgtk: not-affected (2.4.9-2ubuntu2) xenial_webkitgtk: not-affected (2.4.9-2ubuntu2) yakkety_webkitgtk: not-affected (2.4.9-2ubuntu2) devel_webkitgtk: not-affected (2.4.9-2ubuntu2) Patches_qt4-x11: upstream_qt4-x11: needs-triage dapper_qt4-x11: not-affected (no webkit) hardy_qt4-x11: not-affected (no webkit) karmic_qt4-x11: ignored (reached end-of-life) lucid_qt4-x11: ignored (see notes) maverick_qt4-x11: not-affected (webkit isn't built) natty_qt4-x11: not-affected (webkit isn't built) oneiric_qt4-x11: not-affected (webkit isn't built) precise_qt4-x11: not-affected (webkit isn't built) quantal_qt4-x11: not-affected (webkit isn't built) raring_qt4-x11: not-affected (webkit isn't built) saucy_qt4-x11: not-affected (webkit isn't built) trusty_qt4-x11: not-affected (webkit isn't built) trusty/esm_qt4-x11: not-affected (webkit isn't built) utopic_qt4-x11: not-affected (webkit isn't built) vivid_qt4-x11: not-affected (webkit isn't built) vivid/stable-phone-overlay_qt4-x11: DNE vivid/ubuntu-core_qt4-x11: DNE wily_qt4-x11: not-affected (webkit isn't built) xenial_qt4-x11: not-affected (webkit isn't built) esm-infra/xenial_qt4-x11: not-affected (webkit isn't built) yakkety_qt4-x11: not-affected (webkit isn't built) devel_qt4-x11: not-affected (webkit isn't built) Patches_qtwebkit-source: upstream_qtwebkit-source: needs-triage dapper_qtwebkit-source: DNE hardy_qtwebkit-source: DNE karmic_qtwebkit-source: DNE lucid_qtwebkit-source: DNE maverick_qtwebkit-source: ignored (reached end-of-life) natty_qtwebkit-source: ignored (reached end-of-life) oneiric_qtwebkit-source: ignored (reached end-of-life) precise_qtwebkit-source: ignored (no update available) quantal_qtwebkit-source: ignored (reached end-of-life) raring_qtwebkit-source: ignored (reached end-of-life) saucy_qtwebkit-source: ignored (reached end-of-life) trusty_qtwebkit-source: ignored (no update available) trusty/esm_qtwebkit-source: DNE (trusty was ignored [no update available]) utopic_qtwebkit-source: ignored (reached end-of-life) vivid_qtwebkit-source: ignored (reached end-of-life) vivid/stable-phone-overlay_qtwebkit-source: DNE vivid/ubuntu-core_qtwebkit-source: DNE wily_qtwebkit-source: ignored (reached end-of-life) xenial_qtwebkit-source: ignored (no update available) yakkety_qtwebkit-source: ignored (no update available) devel_qtwebkit-source: ignored (no update available) Patches_chromium-browser: upstream_chromium-browser: released (10.0.648.133~r77742) dapper_chromium-browser: DNE hardy_chromium-browser: DNE karmic_chromium-browser: DNE lucid_chromium-browser: released (3.0.1271.97-0ubuntu0.10.04.1) maverick_chromium-browser: released (10.0.648.133~r77742-0ubuntu0.10.10.1) natty_chromium-browser: released (10.0.648.133~r77742-0ubuntu1) oneiric_chromium-browser: released (3.0.1271.97-0ubuntu0.11.10.1) precise_chromium-browser: released (3.0.1271.97-0ubuntu0.12.04.1) quantal_chromium-browser: released (3.0.1271.97-0ubuntu0.12.10.1) raring_chromium-browser: released (10.0.648.133~r77742-0ubuntu1) saucy_chromium-browser: released (10.0.648.133~r77742-0ubuntu1) trusty_chromium-browser: released (10.0.648.133~r77742-0ubuntu1) trusty/esm_chromium-browser: DNE (trusty was released [10.0.648.133~r77742-0ubuntu1]) utopic_chromium-browser: released (10.0.648.133~r77742-0ubuntu1) vivid_chromium-browser: released (10.0.648.133~r77742-0ubuntu1) vivid/stable-phone-overlay_chromium-browser: DNE vivid/ubuntu-core_chromium-browser: DNE wily_chromium-browser: released (10.0.648.133~r77742-0ubuntu1) xenial_chromium-browser: released (10.0.648.133~r77742-0ubuntu1) yakkety_chromium-browser: released (10.0.648.133~r77742-0ubuntu1) devel_chromium-browser: released (10.0.648.133~r77742-0ubuntu1)