rpm package

opensuse/gtk3&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/gtk3&distro=openSUSE%20Tumbleweed

Vulnerabilities (171)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2015-3752	—	< 2.4.11-3.3	2.4.11-3.3	Aug 16, 2015	The Content Security Policy implementation in WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, does not properly restrict cookie transmission for report requests, which allows remote attackers to obtain s
CVE-2015-3749	—	< 2.4.11-3.3	2.4.11-3.3	Aug 16, 2015	WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3748	—	< 2.4.11-3.3	2.4.11-3.3	Aug 16, 2015	WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3747	—	< 2.4.11-3.3	2.4.11-3.3	Aug 16, 2015	WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3745	—	< 2.4.11-3.3	2.4.11-3.3	Aug 16, 2015	WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3743	—	< 2.4.11-3.3	2.4.11-3.3	Aug 16, 2015	WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3741	—	< 2.4.11-3.3	2.4.11-3.3	Aug 16, 2015	WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3731	—	< 2.4.11-3.3	2.4.11-3.3	Aug 16, 2015	WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3727	—	< 2.4.11-3.3	2.4.11-3.3	Jul 3, 2015	WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict rename operations on WebSQL tables, which allows remote attackers to access an arbitrary web site's database via a crafted w
CVE-2015-3659	—	< 2.4.11-3.3	2.4.11-3.3	Jul 3, 2015	The SQLite authorizer in the Storage functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict access to SQL functions, which allows remote attackers to execute arbi
CVE-2015-3658	—	< 2.4.11-3.3	2.4.11-3.3	Jul 3, 2015	The Page Loading functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly consider redirects during decisions about sending an Origin header, which makes it easier for remot
CVE-2015-1155	—	< 2.4.11-3.3	2.4.11-3.3	May 8, 2015	The history implementation in WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to bypass the Same Origin Policy and read arbitrary files via a crafted web site.
CVE-2015-1153	—	< 2.4.11-3.3	2.4.11-3.3	May 8, 2015	WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-1152 and
CVE-2015-1127	—	< 2.4.11-3.3	2.4.11-3.3	Apr 10, 2015	The private-browsing implementation in WebKit in Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5 places browsing history into an index, which might allow local users to obtain sensitive information by reading index entries.
CVE-2015-1122	—	< 2.4.11-3.3	2.4.11-3.3	Apr 10, 2015	WebKit, as used in Apple iOS before 8.3, Apple TV before 7.2, and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a
CVE-2015-1120	—	< 2.4.11-3.3	2.4.11-3.3	Apr 10, 2015	WebKit, as used in Apple iOS before 8.3, Apple TV before 7.2, and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a
CVE-2015-1083	—	< 2.4.11-3.3	2.4.11-3.3	Mar 18, 2015	WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed
CVE-2015-1081	—	< 2.4.11-3.3	2.4.11-3.3	Mar 18, 2015	WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed
CVE-2015-1076	—	< 2.4.11-3.3	2.4.11-3.3	Mar 18, 2015	WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed
CVE-2015-1071	—	< 2.4.11-3.3	2.4.11-3.3	Mar 18, 2015	WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed

CVE-2015-3752Aug 16, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
The Content Security Policy implementation in WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, does not properly restrict cookie transmission for report requests, which allows remote attackers to obtain s
CVE-2015-3749Aug 16, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3748Aug 16, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3747Aug 16, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3745Aug 16, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3743Aug 16, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3741Aug 16, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3731Aug 16, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability th
CVE-2015-3727Jul 3, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict rename operations on WebSQL tables, which allows remote attackers to access an arbitrary web site's database via a crafted w
CVE-2015-3659Jul 3, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
The SQLite authorizer in the Storage functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict access to SQL functions, which allows remote attackers to execute arbi
CVE-2015-3658Jul 3, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
The Page Loading functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly consider redirects during decisions about sending an Origin header, which makes it easier for remot
CVE-2015-1155May 8, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
The history implementation in WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to bypass the Same Origin Policy and read arbitrary files via a crafted web site.
CVE-2015-1153May 8, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-1152 and
CVE-2015-1127Apr 10, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
The private-browsing implementation in WebKit in Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5 places browsing history into an index, which might allow local users to obtain sensitive information by reading index entries.
CVE-2015-1122Apr 10, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple iOS before 8.3, Apple TV before 7.2, and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a
CVE-2015-1120Apr 10, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple iOS before 8.3, Apple TV before 7.2, and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a
CVE-2015-1083Mar 18, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed
CVE-2015-1081Mar 18, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed
CVE-2015-1076Mar 18, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed
CVE-2015-1071Mar 18, 2015
affected < 2.4.11-3.3fixed 2.4.11-3.3
WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed

Page 8 of 9