En

Ubuntu - WebKitGTK+ vulnerability (2020-03-30)

来源:Ubuntu官网 发布日期:2020-03-30 阅读次数:696 评论:0

基本信息

发布日期:2020-03-30(官方当地时间)

更新类型:安全更新

更新版本:未知

感知时间:2020-03-30 21:50:05

风险等级:未知

情报贡献:TSRC

更新标题

USN-4310-1: WebKitGTK+ vulnerability

更新详情

webkit2gtk vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
Ubuntu 19.10
Ubuntu 18.04 LTS
Summary
Several security issues were fixed in WebKitGTK+.
Software Description
webkit2gtk - Web content engine library for GTK+
Details
A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 19.10
libjavascriptcoregtk-4.0-18 - 2.28.0-0ubuntu0.19.10.2
libwebkit2gtk-4.0-37 - 2.28.0-0ubuntu0.19.10.2
Ubuntu 18.04 LTS
libjavascriptcoregtk-4.0-18 - 2.28.0-0ubuntu0.18.04.3
libwebkit2gtk-4.0-37 - 2.28.0-0ubuntu0.18.04.3
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
This update uses a new upstream release, which includes additional bug fixes. After a standard system update you need to restart any applications that use WebKitGTK+, such as Epiphany, to make all the necessary changes.
References
CVE-2020-10018
]]>

软件描述

Ubuntu是一个以桌面应用为主的Linux操作系统

CVE编号

TSRC分析

暂无

业界资讯

暂无

评论

提交评论 您输入的评论有误,请重新输入