svn commit: r408023 - head/security/vuxml
Koop Mast
kwm at rainbow-runner.nl
Thu Feb 4 11:08:42 UTC 2016
On Thu, 2016-02-04 at 11:03 +0000, Koop Mast wrote:
> Author: kwm
> Date: Thu Feb 4 11:03:33 2016
> New Revision: 408023
> URL: https://svnweb.freebsd.org/changeset/ports/408023
>
> Log:
> Document webkit CVE-2014-1748.
>
> If people look at the announcement, CVE-2014-3192 is already fixed.
> This
> CVE was against chromium, and the same code in 2.4.9 is in webkit
> trunk
> so I assume it already fixed.
>
> CVE-2013-6663 is for webkit < 2.4.0, and the rest of the CVE's are
> for
> apple products without any attached patches.
>
> PR: 205683
> Obtained from: http://webkitgtk.org/security/WSA-2015-0002.h
> tml
I think my reasoning is good, but if you think I'm wrong, please let me
know.
Please keep in mind that the 2.4 series is the last stable version that
has the WebKit1 API.
-Koop
More information about the svn-ports-head
mailing list