This bug is to collect statements for Webkit-related CVE's that do not have their own top-level CVE SRT bug because it did not affect the version of webkitgtk or konquerer shipped with Red Hat Enterprise Linux. These statements were also referred to as NVD statements and are noted on the NVD web site. This bug is used for webkit security issues disclosed in the following google chrome security advisory: http://googlechromereleases.blogspot.in/2012/05/stable-channel-update.html
CVE-2011-3086 ------------- https://code.google.com/p/chromium/issues/detail?id=118642 https://bugs.webkit.org/show_bug.cgi?id=83605 http://trac.webkit.org/changeset/115611 CVE-2011-3089 ------------- https://code.google.com/p/chromium/issues/detail?id=120711 https://bugs.webkit.org/show_bug.cgi?id=82630 http://trac.webkit.org/changeset/113252 http://trac.webkit.org/changeset/113497 http://trac.webkit.org/changeset/113581 CVE-2011-3090 ------------- https://code.google.com/p/chromium/issues/detail?id=121223 https://bugs.webkit.org/show_bug.cgi?id=82873 http://trac.webkit.org/changeset/115612 Note: This is websocket related. WebSockets are not enabled in the Red Hat Enterprise Linux 6 webkitgtk packages. CVE-2011-3093 ------------- https://code.google.com/p/chromium/issues/detail?id=122585 https://bugs.webkit.org/show_bug.cgi?id=83751 http://trac.webkit.org/changeset/115610 Note: Other flaws reported on the google chrome security advisory do not affect Webkit
Statement CVE-2011-3086, CVE-2011-3089, CVE-2011-3090, CVE-2011-3093: Not Vulnerable. This issue does not affect the version of webkitgtk as shipped with Red Hat Enterprise Linux 6.