UBUNTU-CVE-2014-4465

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2014-4465

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2014/UBUNTU-CVE-2014-4465.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2014-4465

Upstream

CVE-2014-4465

Published

2014-12-10T21:59:00Z

Modified

2026-04-22T09:44:56.128767Z

Severity

Ubuntu - medium

Summary

[none]

Details

WebKit in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1 allows remote attackers to bypass the Same Origin Policy via crafted Cascading Style Sheets (CSS) token sequences within an SVG file in the SRC attribute of an IMG element.

References

Affected packages

Ubuntu:16.04:LTS / qtwebkit-opensource-src

Package

Name: qtwebkit-opensource-src
Purl: pkg:deb/ubuntu/qtwebkit-opensource-src@5.5.1+dfsg-2ubuntu1?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.4.2+dfsg-1ubuntu2.1

5.5.1+dfsg-2ubuntu1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "5.5.1+dfsg-2ubuntu1",
            "binary_name": "libqt5webkit5"
        },
        {
            "binary_version": "5.5.1+dfsg-2ubuntu1",
            "binary_name": "libqt5webkit5-qmlwebkitplugin"
        },
        {
            "binary_version": "5.5.1+dfsg-2ubuntu1",
            "binary_name": "qml-module-qtwebkit"
        },
        {
            "binary_version": "5.5.1+dfsg-2ubuntu1",
            "binary_name": "qtwebkit5-doc-html"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2014/UBUNTU-CVE-2014-4465.json"

Ubuntu:16.04:LTS / qtwebkit-source