1. Ubuntu Security Notices
  2. USN-1006-1

USN-1006-1: WebKit vulnerabilities

Publication date

19 October 2010

Overview

Releases

Packages

Details

A large number of security issues were discovered in the WebKit browser and
JavaScript engines. If a user were tricked into viewing a malicious
website, a remote attacker could exploit a variety of issues related to web
browser security, including cross-site scripting attacks, denial of
service attacks, and arbitrary code execution.

Please consult the bug listed at the top of this advisory to get the exact
list of CVE numbers fixed for each release.

A large number of security issues were discovered in the WebKit browser and
JavaScript engines. If a user were tricked into viewing a malicious
website, a remote attacker could exploit a variety of issues related to web
browser security, including cross-site scripting attacks, denial of
service attacks, and arbitrary code execution.

Please consult the bug listed at the top of this advisory to get the exact
list of CVE numbers fixed for each release.

Update instructions

After a standard system update you need to restart any applications that use WebKit, such as Epiphany and Midori, to make all the necessary changes.

Learn more about how to get the fixes.

The problem can be corrected by updating your system to the following package versions:

Ubuntu Release Package Version
9.10 karmic libwebkit-1.0-2 –  1.2.5-0ubuntu0.9.10.1
10.10 maverick libwebkit-1.0-2 –  1.2.5-0ubuntu0.10.10.1
10.04 lucid libwebkit-1.0-2 –  1.2.5-0ubuntu0.10.04.1

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Get Ubuntu Pro

References

Have additional questions?

Talk to a member of the team ›