Lucene search
Alpine Linux Development TeamALPINE:CVE-2020-13753HistoryJul 14, 2020 - 2:15 p.m.
CVE-2020-13753
2020-07-1414:15:00
Alpine Linux Development Team
security.alpinelinux.org
26
0.004 Low
EPSS
Percentile
73.3%
The bubblewrap sandbox of WebKitGTK and WPE WebKit, prior to 2.28.3, failed to properly block access to CLONE_NEWUSER and the TIOCSTI ioctl. CLONE_NEWUSER could potentially be used to confuse xdg-desktop-portal, which allows access outside the sandbox. TIOCSTI can be used to directly execute commands outside the sandbox by writing to the controlling terminal’s input buffer, similar to CVE-2017-5226.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | webkit2gtk | < 2.28.3-r0 | UNKNOWN |
| Alpine | 3.12-community | noarch | webkit2gtk | < 2.28.3-r0 | UNKNOWN |
| Alpine | 3.13-community | noarch | webkit2gtk | < 2.28.3-r0 | UNKNOWN |
| Alpine | 3.14-community | noarch | webkit2gtk | < 2.28.3-r0 | UNKNOWN |
| Alpine | 3.15-community | noarch | webkit2gtk | < 2.28.3-r0 | UNKNOWN |
| Alpine | 3.16-community | noarch | webkit2gtk | < 2.28.3-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | webkit2gtk | < 2.28.3-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | webkit2gtk | < 2.28.3-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | webkit2gtk | < 2.28.3-r0 | UNKNOWN |
Related
prion
prion
Design/Logic Flaw
2020-07-14 14:15:00
Input validation
2017-03-29 20:59:00
Design/Logic Flaw
2019-03-26 14:29:00
debiancve
debiancve
cve
cve
redhatcve
redhatcve
veracode
veracode
Arbitrary Code Execution
2020-08-06 21:32:23
ubuntucve
ubuntucve
cvelist
cvelist
CVE-2020-13753
2020-07-14 13:07:18
CVE-2017-5226
2017-03-29 00:00:00
osv
osv
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-4648-1)
2020-11-26 00:00:00
redhat
redhat
(RHSA-2019:1143) Important: flatpak security update
2019-05-13 04:50:39
(RHSA-2019:1024) Important: flatpak security update
2019-05-07 17:30:44
amazon
amazon
Important: flatpak
2019-05-29 19:11:00
Medium: flatpak
2023-07-17 17:39:00
openvas
openvas
Huawei EulerOS: Security Advisory for flatpak (EulerOS-SA-2020-1004)
2020-01-23 00:00:00
CentOS Update for flatpak CESA-2019:1024 centos7
2019-05-14 00:00:00
Huawei EulerOS: Security Advisory for flatpak (EulerOS-SA-2020-1305)
2020-03-24 00:00:00
centos
centos
flatpak security update
2019-05-13 15:08:37
alpinelinux
alpinelinux
CVE-2019-10063
2019-03-26 14:29:00
mageia
mageia
Updated flatpak packages fix security vulnerability
2023-03-24 08:55:49
Updated webkit2 packages fix security vulnerability
2020-08-16 16:53:46
archlinux
archlinux
[ASA-202007-1] webkit2gtk: multiple issues
2020-07-14 00:00:00
ubuntu
ubuntu
WebKitGTK vulnerabilities
2020-11-26 00:00:00
WebKitGTK+ vulnerabilities
2020-07-14 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: webkit2gtk3-2.28.3-1.fc32
2020-07-12 01:02:54
[SECURITY] Fedora 31 Update: webkit2gtk3-2.28.3-1.fc31
2020-07-18 01:09:23
suse
suse
Security update for webkit2gtk3 (important)
2020-07-26 00:00:00
Security update for webkit2gtk3 (important)
2022-02-17 00:00:00
Security update for webkit2gtk3 (important)
2022-01-25 00:00:00
freebsd
freebsd
webkit2-gtk3 -- multible vulnerabilities
2020-07-10 00:00:00
debian
debian
[SECURITY] [DSA 4724-1] webkit2gtk security update
2020-07-15 20:37:56
gentoo
gentoo
WebKitGTK+: Multiple vulnerabilities
2020-07-26 00:00:00