View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2015-1126 severity moderate: SUSE including 6 source package names (libjavascriptcoregtk-1_0-0, libjavascriptcoregtk-1_0-0-32bit, libwebkitgtk-1_0-0, libwebkitgtk-1_0-0-32bit, libwebkitgtk2-lang, webkitgtk), 6 product×package rows across 1 product lines (SUSE Linux Enterprise Workstation Extension 12 SP5): Known Not Affected 6.
WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not properly handle the userinfo field in FTP URLs, which allows remote attackers to trigger incorrect resource access via unspecified vectors.