Wind River Support Network

HomeDefectsLIN9-922
Acknowledged

LIN9-922 : Security Advisory - webkit - CVE-2016-1864

Created: Jun 29, 2016    Updated: May 29, 2018
Found In Version: unknown
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Userspace

Description

The XSS auditor in WebKit, as used in Apple iOS before 9.3 and Safari before 9.1, does not properly handle redirects in block mode, which allows remote attackers to obtain sensitive information via a crafted URL.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1864

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube