CVE-2017-2350: An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue…

CVE-2017-2350 [MEDIUM] CWE-200 GHSA-7v62-hh55-2pvh: An issue was discovered in certain Apple products An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

CVE-2017-2350 [MEDIUM] CVE-2017-2350: An issue was discovered in certain Apple products An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

CVE-2017-2350 WebKitGTK+ vulnerabilities Title: WebKitGTK+ vulnerabilities Summary: Several security issues were fixed in WebKitGTK+. A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution. Instructions: This update uses a new upstream release, which includes additional bug fixes. After a standard system update you need to restart any applications that use WebKitGTK+, such as Epiphany, to make all the necessary changes.

CVE-2017-2350 [MEDIUM] CVE-2017-2350: tvOS 10.1.1 Apple Security Update: About the security content of tvOS 10.1.1 Product: tvOS Version: 10.1.1 CVE: CVE-2017-2350 Component: WebKit Impact: Processing maliciously crafted web content may exfiltrate data cross-origin Description: A prototype access issue was addressed through improved exception handling.

CVE-2017-2350 [MEDIUM] CVE-2017-2350: iOS 10.2.1 Apple Security Update: About the security content of iOS 10.2.1 Product: iOS Version: 10.2.1 CVE: CVE-2017-2350 Component: WebKit Impact: Processing maliciously crafted web content may exfiltrate data cross-origin Description: A prototype access issue was addressed through improved exception handling.

CVE-2017-2350 [MEDIUM] CVE-2017-2350: Safari 10.0.3 Apple Security Update: About the security content of Safari 10.0.3 Product: Safari Version: 10.0.3 CVE: CVE-2017-2350 Component: WebKit Impact: Processing maliciously crafted web content may exfiltrate data cross-origin Description: A prototype access issue was addressed through improved exception handling.

CVE-2017-2350 [MEDIUM] CVE-2017-2350: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.2.1 is affected... An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site. Scope: local bookworm: resolved (fixed in 2.14.4-1) bullseye: resolved (fixed in 2.14.4-1) forky: resolved (fixed in 2.14.4-1) sid: resolved (fixed in 2.14.4-1) trixie: resolved (fixed in 2.14.4-1)