Описание
WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 allows remote attackers to conduct DNS rebinding attacks against non-HTTP Safari sessions by leveraging HTTP/0.9 support.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| esm-infra/xenial | ignored | no update available |
| precise | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | ignored | end of standard support |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-apps/xenial | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| precise | ignored | end of life |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | ignored | end of standard support |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise | ignored | end of life |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | DNE | |
| yakkety | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.14.1-1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/xenial | released | 2.14.2-0ubuntu0.16.04.1 |
| precise | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | released | 2.14.0 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | released | 2.14.2-0ubuntu0.16.04.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-apps/xenial | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| precise | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | ignored | end of standard support |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 allows remote attackers to conduct DNS rebinding attacks against non-HTTP Safari sessions by leveraging HTTP/0.9 support.
WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 allows remote attackers to conduct DNS rebinding attacks against non-HTTP Safari sessions by leveraging HTTP/0.9 support.
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3