CVE-2010-3259 (retired)

Priority
Description
WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google
Chrome before 6.0.472.53, and webkitgtk before 1.2.6, does not properly
restrict read access to images derived from CANVAS elements, which allows
remote attackers to bypass the Same Origin Policy and obtain potentially
sensitive image data via a crafted web site.
Assigned-to
micahg
Notes
jdstrandqt4-x11 unmaintained upstream (see README.webkit for details)
webkit is a fork of khtml from kdelibs. kdelibs5 is farther from
it, while qt4-x11 attempts to unify khtml and webkit.
mdeslaurwebkitkde is a wrapper around qt4-x11's webkit.
Package
Upstream:released (6.0.472.53)
Package
Upstream:needs-triage
Package
Upstream:released (1.2.5)
Patches:
upstream:http://trac.webkit.org/changeset/65826
More Information

Updated: 2019-10-09 07:33:09 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)