Upstream information

CVE-2015-5822 at MITRE

Description

WebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and APPLE-SA-2015-09-16-3.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having important severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 6.8
Vector AV:N/AC:M/Au:N/C:P/I:P/A:P
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial
SUSE Bugzilla entry: 971460

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 12 SP2
  • libjavascriptcoregtk-1_0-0 >= 2.4.11-23.20
  • libjavascriptcoregtk-1_0-0-32bit >= 2.4.11-23.20
  • libjavascriptcoregtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk-1_0-0 >= 2.4.11-23.20
  • libwebkitgtk-1_0-0-32bit >= 2.4.11-23.20
  • libwebkitgtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk2-lang >= 2.4.11-23.20
  • libwebkitgtk3-lang >= 2.4.11-23.20
  • typelib-1_0-JavaScriptCore-3_0 >= 2.4.11-23.20
  • typelib-1_0-WebKit-3_0 >= 2.4.11-23.20
Patchnames:
SUSE Linux Enterprise Desktop 12 SP2 GA libjavascriptcoregtk-1_0-0
SUSE Linux Enterprise Desktop 12 SP3
  • libjavascriptcoregtk-1_0-0 >= 2.4.11-23.20
  • libjavascriptcoregtk-1_0-0-32bit >= 2.4.11-23.20
  • libjavascriptcoregtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk-1_0-0 >= 2.4.11-23.20
  • libwebkitgtk-1_0-0-32bit >= 2.4.11-23.20
  • libwebkitgtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk2-lang >= 2.4.11-23.20
  • libwebkitgtk3-lang >= 2.4.11-23.20
  • typelib-1_0-JavaScriptCore-3_0 >= 2.4.11-23.20
  • typelib-1_0-WebKit-3_0 >= 2.4.11-23.20
Patchnames:
SUSE Linux Enterprise Desktop 12 SP3 GA libjavascriptcoregtk-1_0-0
SUSE Linux Enterprise Server 12 SP2
  • libjavascriptcoregtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk3-lang >= 2.4.11-23.20
Patchnames:
SUSE Linux Enterprise Server 12 SP2 GA libjavascriptcoregtk-3_0-0
SUSE Linux Enterprise Server 12 SP3
  • libjavascriptcoregtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk3-lang >= 2.4.11-23.20
Patchnames:
SUSE Linux Enterprise Server 12 SP3 GA libjavascriptcoregtk-3_0-0
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
  • libjavascriptcoregtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk-3_0-0 >= 2.4.11-23.20
  • libwebkitgtk3-lang >= 2.4.11-23.20
Patchnames:
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 GA libjavascriptcoregtk-3_0-0
SUSE Linux Enterprise Software Development Kit 12 SP2
  • libjavascriptcoregtk-1_0-0 >= 2.4.11-23.20
  • libwebkitgtk-1_0-0 >= 2.4.11-23.20
  • libwebkitgtk-devel >= 2.4.11-23.20
  • libwebkitgtk3-devel >= 2.4.11-23.20
  • typelib-1_0-JavaScriptCore-1_0 >= 2.4.11-23.20
  • typelib-1_0-JavaScriptCore-3_0 >= 2.4.11-23.20
  • typelib-1_0-WebKit-1_0 >= 2.4.11-23.20
  • typelib-1_0-WebKit-3_0 >= 2.4.11-23.20
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP2 GA libjavascriptcoregtk-1_0-0
SUSE Linux Enterprise Software Development Kit 12 SP3
  • libjavascriptcoregtk-1_0-0 >= 2.4.11-23.20
  • libwebkitgtk-1_0-0 >= 2.4.11-23.20
  • libwebkitgtk-devel >= 2.4.11-23.20
  • libwebkitgtk3-devel >= 2.4.11-23.20
  • typelib-1_0-JavaScriptCore-1_0 >= 2.4.11-23.20
  • typelib-1_0-JavaScriptCore-3_0 >= 2.4.11-23.20
  • typelib-1_0-WebKit-1_0 >= 2.4.11-23.20
  • typelib-1_0-WebKit-3_0 >= 2.4.11-23.20
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP3 GA libjavascriptcoregtk-1_0-0
SUSE Linux Enterprise Workstation Extension 12 SP2
  • libjavascriptcoregtk-1_0-0 >= 2.4.11-23.20
  • libjavascriptcoregtk-1_0-0-32bit >= 2.4.11-23.20
  • libwebkitgtk-1_0-0 >= 2.4.11-23.20
  • libwebkitgtk-1_0-0-32bit >= 2.4.11-23.20
  • libwebkitgtk2-lang >= 2.4.11-23.20
  • typelib-1_0-JavaScriptCore-3_0 >= 2.4.11-23.20
  • typelib-1_0-WebKit-3_0 >= 2.4.11-23.20
Patchnames:
SUSE Linux Enterprise Workstation Extension 12 SP2 GA libjavascriptcoregtk-1_0-0
SUSE Linux Enterprise Workstation Extension 12 SP3
  • libjavascriptcoregtk-1_0-0 >= 2.4.11-23.20
  • libjavascriptcoregtk-1_0-0-32bit >= 2.4.11-23.20
  • libwebkitgtk-1_0-0 >= 2.4.11-23.20
  • libwebkitgtk-1_0-0-32bit >= 2.4.11-23.20
  • libwebkitgtk2-lang >= 2.4.11-23.20
  • typelib-1_0-JavaScriptCore-3_0 >= 2.4.11-23.20
  • typelib-1_0-WebKit-3_0 >= 2.4.11-23.20
Patchnames:
SUSE Linux Enterprise Workstation Extension 12 SP3 GA libjavascriptcoregtk-1_0-0
openSUSE Leap 42.1
  • libjavascriptcoregtk-1_0-0 >= 2.4.10-7.2
  • libjavascriptcoregtk-1_0-0-32bit >= 2.4.10-7.2
  • libjavascriptcoregtk-1_0-0-debuginfo >= 2.4.10-7.2
  • libjavascriptcoregtk-1_0-0-debuginfo-32bit >= 2.4.10-7.2
  • libjavascriptcoregtk-3_0-0 >= 2.4.10-7.2
  • libjavascriptcoregtk-3_0-0-32bit >= 2.4.10-7.2
  • libjavascriptcoregtk-3_0-0-debuginfo >= 2.4.10-7.2
  • libjavascriptcoregtk-3_0-0-debuginfo-32bit >= 2.4.10-7.2
  • libwebkitgtk-1_0-0 >= 2.4.10-7.2
  • libwebkitgtk-1_0-0-32bit >= 2.4.10-7.2
  • libwebkitgtk-1_0-0-debuginfo >= 2.4.10-7.2
  • libwebkitgtk-1_0-0-debuginfo-32bit >= 2.4.10-7.2
  • libwebkitgtk-3_0-0 >= 2.4.10-7.2
  • libwebkitgtk-3_0-0-32bit >= 2.4.10-7.2
  • libwebkitgtk-3_0-0-debuginfo >= 2.4.10-7.2
  • libwebkitgtk-3_0-0-debuginfo-32bit >= 2.4.10-7.2
  • libwebkitgtk-devel >= 2.4.10-7.2
  • libwebkitgtk2-lang >= 2.4.10-7.2
  • libwebkitgtk3-devel >= 2.4.10-7.2
  • libwebkitgtk3-lang >= 2.4.10-7.2
  • typelib-1_0-JavaScriptCore-1_0 >= 2.4.10-7.2
  • typelib-1_0-JavaScriptCore-3_0 >= 2.4.10-7.2
  • typelib-1_0-WebKit-1_0 >= 2.4.10-7.2
  • typelib-1_0-WebKit-3_0 >= 2.4.10-7.2
  • webkit-jsc-1 >= 2.4.10-7.2
  • webkit-jsc-1-debuginfo >= 2.4.10-7.2
  • webkit-jsc-3 >= 2.4.10-7.2
  • webkit-jsc-3-debuginfo >= 2.4.10-7.2
  • webkitgtk >= 2.4.10-7.2
  • webkitgtk3 >= 2.4.10-7.2
Patchnames:
openSUSE-2016-412
openSUSE Leap 42.2
  • libjavascriptcoregtk-1_0-0 >= 2.4.11-2.10
  • libjavascriptcoregtk-3_0-0 >= 2.4.11-2.10
  • libwebkitgtk-1_0-0 >= 2.4.11-2.10
  • libwebkitgtk-3_0-0 >= 2.4.11-2.10
  • libwebkitgtk-devel >= 2.4.11-2.10
  • libwebkitgtk2-lang >= 2.4.11-2.10
  • libwebkitgtk3-lang >= 2.4.11-2.10
  • typelib-1_0-JavaScriptCore-1_0 >= 2.4.11-2.10
  • typelib-1_0-WebKit-1_0 >= 2.4.11-2.10
Patchnames:
openSUSE Leap 42.2 GA libjavascriptcoregtk-1_0-0
openSUSE Leap 42.3
  • libjavascriptcoregtk-1_0-0 >= 2.4.11-4.26
  • libjavascriptcoregtk-3_0-0 >= 2.4.11-4.26
  • libwebkitgtk-1_0-0 >= 2.4.11-4.26
  • libwebkitgtk-3_0-0 >= 2.4.11-4.26
  • libwebkitgtk-devel >= 2.4.11-4.26
  • libwebkitgtk2-lang >= 2.4.11-4.26
  • libwebkitgtk3-lang >= 2.4.11-4.26
  • typelib-1_0-JavaScriptCore-1_0 >= 2.4.11-4.26
  • typelib-1_0-WebKit-1_0 >= 2.4.11-4.26
Patchnames:
openSUSE Leap 42.3 GA libjavascriptcoregtk-1_0-0
openSUSE Tumbleweed
  • libjavascriptcoregtk-1_0-0 >= 2.4.11-3.3
  • libjavascriptcoregtk-1_0-0-32bit >= 2.4.11-3.3
  • libjavascriptcoregtk-3_0-0 >= 2.4.11-3.3
  • libjavascriptcoregtk-3_0-0-32bit >= 2.4.11-3.3
  • libwebkitgtk-1_0-0 >= 2.4.11-3.3
  • libwebkitgtk-1_0-0-32bit >= 2.4.11-3.3
  • libwebkitgtk-3_0-0 >= 2.4.11-3.3
  • libwebkitgtk-3_0-0-32bit >= 2.4.11-3.3
  • libwebkitgtk-devel >= 2.4.11-3.3
  • libwebkitgtk2-lang >= 2.4.11-3.3
  • libwebkitgtk3-devel >= 2.4.11-3.3
  • libwebkitgtk3-lang >= 2.4.11-3.3
  • typelib-1_0-JavaScriptCore-1_0 >= 2.4.11-3.3
  • typelib-1_0-JavaScriptCore-3_0 >= 2.4.11-3.3
  • typelib-1_0-WebKit-1_0 >= 2.4.11-3.3
  • typelib-1_0-WebKit-3_0 >= 2.4.11-3.3
  • webkit-jsc-1 >= 2.4.11-3.3
  • webkit-jsc-3 >= 2.4.11-3.3
Patchnames:
openSUSE Tumbleweed GA libjavascriptcoregtk-1_0-0