UBUNTU-CVE-2014-1345

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2014-1345

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2014/UBUNTU-CVE-2014-1345.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2014-1345

Upstream

CVE-2014-1345

Published

2014-07-01T10:17:00Z

Modified

2026-04-22T09:31:48.123788Z

Severity

Ubuntu - medium

Summary

[none]

Details

WebKit in Apple iOS before 7.1.2 and Apple Safari before 6.1.5 and 7.x before 7.0.5 does not properly encode domain names in URLs, which allows remote attackers to spoof the address bar via a crafted web site.

References

Affected packages

Ubuntu:16.04:LTS / qtwebkit-opensource-src

Package

Name: qtwebkit-opensource-src
Purl: pkg:deb/ubuntu/qtwebkit-opensource-src@5.5.1+dfsg-2ubuntu1?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.4.2+dfsg-1ubuntu2.1

5.5.1+dfsg-2ubuntu1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "5.5.1+dfsg-2ubuntu1",
            "binary_name": "libqt5webkit5"
        },
        {
            "binary_version": "5.5.1+dfsg-2ubuntu1",
            "binary_name": "libqt5webkit5-qmlwebkitplugin"
        },
        {
            "binary_version": "5.5.1+dfsg-2ubuntu1",
            "binary_name": "qml-module-qtwebkit"
        },
        {
            "binary_version": "5.5.1+dfsg-2ubuntu1",
            "binary_name": "qtwebkit5-doc-html"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2014/UBUNTU-CVE-2014-1345.json"

Ubuntu:16.04:LTS / qtwebkit-source