CVE-2009-1687
Publication date 10 June 2009
Last updated 24 July 2024
Ubuntu priority
The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document that triggers write access to an “offset of a NULL pointer.”
Status
Package | Ubuntu Release | Status |
---|---|---|
kde4libs | 11.04 natty |
Not affected
|
10.10 maverick |
Not affected
|
|
10.04 LTS lucid |
Not affected
|
|
9.10 karmic |
Not affected
|
|
9.04 jaunty |
Fixed 4:4.2.2-0ubuntu5.1
|
|
8.10 intrepid |
Fixed 4:4.1.4-0ubuntu1~intrepid1.2
|
|
8.04 LTS hardy | Ignored end of life | |
6.06 LTS dapper | Not in release | |
kdelibs | 11.04 natty |
Fixed 4:3.5.10.dfsg.1-2ubuntu5
|
10.10 maverick |
Fixed 4:3.5.10.dfsg.1-2ubuntu5
|
|
10.04 LTS lucid |
Fixed 4:3.5.10.dfsg.1-2ubuntu5
|
|
9.10 karmic |
Fixed 4:3.5.10.dfsg.1-2ubuntu5
|
|
9.04 jaunty |
Fixed 4:3.5.10.dfsg.1-1ubuntu8.1
|
|
8.10 intrepid |
Fixed 4:3.5.10-0ubuntu6.1
|
|
8.04 LTS hardy |
Fixed 4:3.5.10-0ubuntu1~hardy1.2
|
|
6.06 LTS dapper | Ignored end of life | |
qt4-x11 | 11.04 natty |
Not affected
|
10.10 maverick |
Not affected
|
|
10.04 LTS lucid |
Not affected
|
|
9.10 karmic |
Not affected
|
|
9.04 jaunty |
Fixed 4.5.0-0ubuntu4.3
|
|
8.10 intrepid |
Fixed 4.4.3-0ubuntu1.4
|
|
8.04 LTS hardy |
Not affected
|
|
6.06 LTS dapper |
Not affected
|
|
webkit | 11.04 natty |
Not affected
|
10.10 maverick |
Not affected
|
|
10.04 LTS lucid |
Not affected
|
|
9.10 karmic |
Not affected
|
|
9.04 jaunty |
Fixed 1.0.1-4ubuntu0.1
|
|
8.10 intrepid |
Fixed 1.0.1-2ubuntu0.2
|
|
8.04 LTS hardy | Ignored end of life | |
6.06 LTS dapper | Not in release |
Notes
Patch details
Package | Patch details |
---|---|
kde4libs | |
kdelibs | |
webkit |
|