UBUNTU-CVE-2017-2446
- Source
- https://ubuntu.com/security/CVE-2017-2446
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2017/UBUNTU-CVE-2017-2446.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2017-2446
- Upstream
- Downstream
- Related
- Published
- 2017-04-01T00:00:00Z
- Modified
- 2025-10-24T04:46:05Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code via a crafted web site that leverages the mishandling of strict mode functions.
- References
Affected packages
Ubuntu:16.04:LTS
webkit2gtk
Package
- Name
- webkit2gtk
- Purl
- pkg:deb/ubuntu/webkit2gtk@2.16.1-0ubuntu0.16.04.1?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.16.1-0ubuntu0.16.04.1
Affected versions
2.*
2.8.5+dfsg1-3
2.10.3+dfsg1-1
2.10.4+dfsg1-1
2.10.5-1
2.10.6-1
2.10.6-1ubuntu1
2.10.8-1ubuntu1
2.10.9-1ubuntu1
2.12.5-0ubuntu0.16.04.1
2.14.2-0ubuntu0.16.04.1
2.14.3-0ubuntu0.16.04.1
2.14.5-0ubuntu0.16.04.1
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2.16.1-0ubuntu0.16.04.1",
"binary_name": "gir1.2-javascriptcoregtk-4.0"
},
{
"binary_version": "2.16.1-0ubuntu0.16.04.1",
"binary_name": "gir1.2-webkit2-4.0"
},
{
"binary_version": "2.16.1-0ubuntu0.16.04.1",
"binary_name": "libjavascriptcoregtk-4.0-18"
},
{
"binary_version": "2.16.1-0ubuntu0.16.04.1",
"binary_name": "libjavascriptcoregtk-4.0-bin"
},
{
"binary_version": "2.16.1-0ubuntu0.16.04.1",
"binary_name": "libjavascriptcoregtk-4.0-dev"
},
{
"binary_version": "2.16.1-0ubuntu0.16.04.1",
"binary_name": "libwebkit2gtk-4.0-37"
},
{
"binary_version": "2.16.1-0ubuntu0.16.04.1",
"binary_name": "libwebkit2gtk-4.0-37-gtk2"
},
{
"binary_version": "2.16.1-0ubuntu0.16.04.1",
"binary_name": "libwebkit2gtk-4.0-dev"
}
]
}qtwebkit-opensource-src
Package
- Name
- qtwebkit-opensource-src
- Purl
- pkg:deb/ubuntu/qtwebkit-opensource-src@5.5.1+dfsg-2ubuntu1?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_version": "5.5.1+dfsg-2ubuntu1",
"binary_name": "libqt5webkit5"
},
{
"binary_version": "5.5.1+dfsg-2ubuntu1",
"binary_name": "libqt5webkit5-dev"
},
{
"binary_version": "5.5.1+dfsg-2ubuntu1",
"binary_name": "libqt5webkit5-qmlwebkitplugin"
},
{
"binary_version": "5.5.1+dfsg-2ubuntu1",
"binary_name": "qml-module-qtwebkit"
},
{
"binary_version": "5.5.1+dfsg-2ubuntu1",
"binary_name": "qtwebkit5-doc-html"
}
]
}qtwebkit-source
webkitgtk
Package
- Name
- webkitgtk
- Purl
- pkg:deb/ubuntu/webkitgtk@2.4.11-0ubuntu0.1?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "gir1.2-javascriptcoregtk-3.0"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "gir1.2-webkit-3.0"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "gir1.2-webkit2-3.0"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libjavascriptcoregtk-1.0-0"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libjavascriptcoregtk-1.0-dev"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libjavascriptcoregtk-3.0-0"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libjavascriptcoregtk-3.0-bin"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libjavascriptcoregtk-3.0-dev"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkit-dev"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkit2gtk-3.0-25"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkit2gtk-3.0-dev"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkitgtk-1.0-0"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkitgtk-1.0-common"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkitgtk-3.0-0"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkitgtk-3.0-common"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkitgtk-3.0-dev"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkitgtk-common-dev"
},
{
"binary_version": "2.4.11-0ubuntu0.1",
"binary_name": "libwebkitgtk-dev"
}
]
}Ubuntu:18.04:LTS
qtwebkit-opensource-src
Package
- Name
- qtwebkit-opensource-src
- Purl
- pkg:deb/ubuntu/qtwebkit-opensource-src@5.212.0~alpha2-7ubuntu1?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
5.*
5.9.1+dfsg-5ubuntu1
5.9.1+dfsg-5ubuntu3
5.212.0~alpha2-5build2
5.212.0~alpha2-5build4
5.212.0~alpha2-7
5.212.0~alpha2-7build2
5.212.0~alpha2-7ubuntu1
Ecosystem specific
{
"binaries": [
{
"binary_version": "5.212.0~alpha2-7ubuntu1",
"binary_name": "libqt5webkit5"
},
{
"binary_version": "5.212.0~alpha2-7ubuntu1",
"binary_name": "libqt5webkit5-dev"
},
{
"binary_version": "5.212.0~alpha2-7ubuntu1",
"binary_name": "qml-module-qtwebkit"
},
{
"binary_version": "5.212.0~alpha2-7ubuntu1",
"binary_name": "qtwebkit5-doc-html"
}
]
}qtwebkit-source
webkitgtk
Package
- Name
- webkitgtk
- Purl
- pkg:deb/ubuntu/webkitgtk@2.4.11-3ubuntu3?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "gir1.2-javascriptcoregtk-3.0"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "gir1.2-webkit-3.0"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "libjavascriptcoregtk-1.0-0"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "libjavascriptcoregtk-1.0-dev"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "libjavascriptcoregtk-3.0-0"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "libjavascriptcoregtk-3.0-bin"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "libjavascriptcoregtk-3.0-dev"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "libwebkitgtk-1.0-0"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "libwebkitgtk-3.0-0"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "libwebkitgtk-3.0-dev"
},
{
"binary_version": "2.4.11-3ubuntu3",
"binary_name": "libwebkitgtk-dev"
}
]
}Ubuntu:20.04:LTS
qtwebkit-opensource-src
Package
- Name
- qtwebkit-opensource-src
- Purl
- pkg:deb/ubuntu/qtwebkit-opensource-src@5.212.0~alpha4-1ubuntu2.1?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:22.04:LTS
qtwebkit-opensource-src
Package
- Name
- qtwebkit-opensource-src
- Purl
- pkg:deb/ubuntu/qtwebkit-opensource-src@5.212.0~alpha4-15ubuntu1?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:24.04:LTS
qtwebkit-opensource-src
Package
- Name
- qtwebkit-opensource-src
- Purl
- pkg:deb/ubuntu/qtwebkit-opensource-src@5.212.0~alpha4-36?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected