Detections
Analytics

Fedora 23 : webkitgtk4-2.10.7-1.fc23 (2016-ec05afb364)

high Nessus Plugin ID 89636

Language:

Synopsis

The remote Fedora host is missing a security update.

Description

This update together with previous releases addresses the following vulnerabilities: - CVE-2015-7096 - CVE-2015-7098 Additional fixes: - Disable DNS prefetch when a proxy is configured. - Reduce the maximum simultaneous network connections to match other browsers. - Make WebKitWebView always propagate motion-notify-event signal. - Add a way to force accelerating compositing mode at runtime using an environment variable. - Fix input elements and scrollbars rendering with GTK+ 3.19. - Fix rendering of lines when using solid colors. - Fix UI process crashes related to not having a main resource response when the load is committed for pages restored from the history cache.

 - Fix a WebProcess crash when loading large contents with custom URI schemes API. - Fix a crash in the UI process when the WebView is destroyed while the screensaver DBus proxy is being created. - Fix WebProcess crashes due to BadDrawable X errors in accelerated compositing mode. - Fix crashes on PPC64 due to mprotect() on address not aligned to the page size. - Fix std::bad_function_call exception raised in dispatchDecidePolicyForNavigationAction. - Fix downloads of data URLs. - Fix runtime critical warnings when closing a page containing windowed plugins. - Fix several crashes and rendering issues. - Fix a deadlock in the Web Process when JavaScript garbage collector was running for a web worker thread that made google maps to hang. - Fix media controls displaying without controls attribute. - Fix a Web Process crash when quickly attempting many DnD operations. - Fix the build with GTK+ < 3.16. - Translation updates: French, German, Italian, Turkish.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected webkitgtk4 package.

See Also

http://www.nessus.org/u?62a529bc

Plugin Details

Severity: High

ID: 89636

File Name: fedora_2016-ec05afb364.nasl

Version: 1.3

Type: local

Agent: unix

Published: 3/4/2016

Updated: 1/11/2021

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:webkitgtk4, cpe:/o:fedoraproject:fedora:23

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2/4/2016

Reference Information