** Description changed: + Impact + ------ + The bug is a security issue + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11396 https://git.gnome.org/browse/epiphany/commit/?h=gnome-3-26&id=56a254bf https://security-tracker.debian.org/tracker/CVE-2018-11396 + + Test case + ---------- + Try opening https://bug795740.bugzilla-attachments.gnome.org/attachment.cgi?id=371595 it shold segfault the browser Regression Potential -------------------- Minimal fix cherry-pick upstream to gnome-3-28 and gnome-3-26 branches (corresponds with Ubuntu 17.10 and 18.04 LTS) Testing Done ------------ Visiting the proof of concept link from the GNOME bug still crashes epiphany.
-- You received this bug notification because you are a member of Ubuntu Desktop Bugs, which is subscribed to epiphany-browser in Ubuntu. https://bugs.launchpad.net/bugs/1773028 Title: CVE-2018-11396 epiphany crash fix To manage notifications about this bug go to: https://bugs.launchpad.net/epiphany-browser/+bug/1773028/+subscriptions -- desktop-bugs mailing list desktop-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/desktop-bugs
