rpm package
suse/libQtWebKit4&distro=SUSE Linux Enterprise Software Development Kit 12 SP1
pkg:rpm/suse/libQtWebKit4&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-8079 | Med | 5.3 | < 4.8.6+2.3.3-3.1 | 4.8.6+2.3.3-3.1 | Sep 7, 2017 | qt5-qtwebkit before 5.4 records private browsing URLs to its favicon database, WebpageIcons.db. | |
| CVE-2016-6354 | Cri | 9.8 | < 4.8.6+2.3.3-3.1 | 4.8.6+2.3.3-3.1 | Sep 21, 2016 | Heap-based buffer overflow in the yy_get_next_buffer function in Flex before 2.6.1 might allow context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read. |
- affected < 4.8.6+2.3.3-3.1fixed 4.8.6+2.3.3-3.1
qt5-qtwebkit before 5.4 records private browsing URLs to its favicon database, WebpageIcons.db.
- affected < 4.8.6+2.3.3-3.1fixed 4.8.6+2.3.3-3.1
Heap-based buffer overflow in the yy_get_next_buffer function in Flex before 2.6.1 might allow context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read.