Информационная безопасность
[RU] switch to English


Дополнительная информация

  Уязвимости безопасности в Oxide

From:UBUNTU
Date:11 октября 2015 г.
Subject:[USN-2757-1] Oxide vulnerabilities



==========================================================================
Ubuntu Security Notice USN-2757-1
October 05, 2015

oxide-qt vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 15.04
- Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in Oxide.

Software Description:
- oxide-qt: Web browser engine library for Qt (QML plugin)

Details:

Two security issues were discovered in Blink and V8. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit these to bypass same-origin restrictions.
(CVE-2015-1303, CVE-2015-1304)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 15.04:
 liboxideqtcore0                 1.9.5-0ubuntu0.15.04.1

Ubuntu 14.04 LTS:
 liboxideqtcore0                 1.9.5-0ubuntu0.14.04.1

In general, a standard system update will make all the necessary changes.

References:
 http://www.ubuntu.com/usn/usn-2757-1
 CVE-2015-1303, CVE-2015-1304

Package Information:
 https://launchpad.net/ubuntu/+source/oxide-qt/1.9.5-0ubuntu0.15.04.1
 https://launchpad.net/ubuntu/+source/oxide-qt/1.9.5-0ubuntu0.14.04.1




--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород