Package: webkit Severity: grave Tags: security patch Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for webkit.
CVE-2010-2304[0]: | The toAlphabetic function in rendering/RenderListMarker.cpp in WebCore | in WebKit in Google Chrome before 5.0.375.70 allows remote attackers | to cause a denial of service (memory corruption) or possibly execute | arbitrary code via vectors related to list markers, aka rdar problem | 8009118. If you fix the vulnerability please also make sure to include the CVE id in your changelog entry. The upstream patch to fix this issue applies fine to the version in Debian and is available on: http://src.chromium.org/viewvc/chrome/branches/WebKit/375/WebCore/rendering/RenderListMarker.cpp?r1=48100&r2=48099 For further information see: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2304 http://security-tracker.debian.org/tracker/CVE-2010-2304 -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0AAAA For security reasons, all text in this mail is double-rot13 encrypted.
pgpQPN1BonlKW.pgp
Description: PGP signature
