| Description: | Summary:
The remote host is missing an update to webkitgtk
announced via advisory FEDORA-2009-6166.
Note: This VT has been deprecated and is therefore no longer functional.
Vulnerability Insight:
Update Information:
WebKitGTK+ 1.1.8 contains many bug-fixes and updates including spell-checking
support, enhanced error reporting, lots of ATK enhancements, support for copying
images to the clipboard, and a new printing API (since 1.1.5) that allows
applications better control and monitoring of the printing process. Also, a
potential buffer overflow in SVGList::insertItemBefore has been fixed
(CVE-2009-0945). The JIT compiler is now enabled by default for x86_64
systems.
ChangeLog:
* Fri May 29 2009 Peter Gordon - 1.1.8-1
- Update to new upstream release (1.1.8)
* Thu May 28 2009 Peter Gordon - 1.1.7-1
- Update to new upstream release (1.1.7)
- Remove jit build conditional. (JIT is now enabled by default on platforms
which support it: currently 32- and 64-bit x86.)
- Fix installation of the GtkLauncher demo program so that it
is a binary and not a script. (Fixes bug #443048.)
Solution:
Apply the appropriate updates.
This update can be installed with the yum update program. Use
su -c 'yum update webkitgtk' at the command line.
CVSS Score:
9.3
CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
