CVE-2016-7599

Priority
Medium
Description
An issue was discovered in certain Apple products. iOS before 10.2 is
affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected.
iTunes before 12.5.4 is affected. The issue involves the "WebKit"
component. It allows remote attackers to bypass the Same Origin Policy and
obtain sensitive information via a crafted web site that uses HTTP
redirects.
References
Notes
 jdstrand> webkit receives limited support. For details, see
 https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit
 jdstrand> webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 17.04 (Zesty Zapus):DNE
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):ignored (no update available)
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):ignored (no update available)
Ubuntu 17.04 (Zesty Zapus):ignored (no update available)
Patches:
Package
Upstream:released (2.14.3)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (2.14.3-0ubuntu0.16.04.1)
Ubuntu 17.04 (Zesty Zapus):not-affected (2.14.3-1)
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):ignored (no update available)
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):ignored (no update available)
Ubuntu 17.04 (Zesty Zapus):ignored (no update available)
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):ignored (no update available)
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):ignored (no update available)
Ubuntu 17.04 (Zesty Zapus):ignored (no update available)
More Information

Updated: 2017-08-11 23:55:19 UTC (commit 13081)