Lucene search

K
archlinuxArchLinuxASA-202011-28
HistoryNov 26, 2020 - 12:00 a.m.

[ASA-202011-28] webkit2gtk: arbitrary code execution

2020-11-2600:00:00
security.archlinux.org
148
arbitrary code execution
webkit2gtk vulnerability
out-of-bounds write
use after free
crafted web content
arch linux
cve-2020-9983
cve-2020-13543
cve-2020-13584

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.017

Percentile

87.8%

Arch Linux Security Advisory ASA-202011-28

Severity: Medium
Date : 2020-11-26
CVE-ID : CVE-2020-9983 CVE-2020-13543 CVE-2020-13584
Package : webkit2gtk
Type : arbitrary code execution
Remote : Yes
Link : https://security.archlinux.org/AVG-1291

Summary

The package webkit2gtk before version 2.30.3-1 is vulnerable to
arbitrary code execution.

Resolution

Upgrade to 2.30.3-1.

pacman -Syu “webkit2gtk>=2.30.3-1”

The problems have been fixed upstream in version 2.30.3.

Workaround

None.

Description

  • CVE-2020-9983 (arbitrary code execution)

An out-of-bounds write issue was found in webkit2gtk before 2.30.3.
Processing maliciously crafted web content may have lead to code
execution.

  • CVE-2020-13543 (arbitrary code execution)

A use after free issue was found in webkit2gtk before 2.30.3.
Processing maliciously crafted web content may lead to arbitrary code
execution.

  • CVE-2020-13584 (arbitrary code execution)

A use after free issue was found in webkit2gtk before 2.30.3.
Processing maliciously crafted web content may have lead to arbitrary
code execution.

Impact

A remote attacker might be able to execute arbitrary code via crafted
web content.

References

https://webkitgtk.org/security/WSA-2020-0008.html
https://vulners.com/cve/CVE-2020-9983
https://webkitgtk.org/security/WSA-2020-0009.html#CVE-2020-13543
https://vulners.com/cve/CVE-2020-13584
https://security.archlinux.org/CVE-2020-9983
https://security.archlinux.org/CVE-2020-13543
https://security.archlinux.org/CVE-2020-13584

OSVersionArchitecturePackageVersionFilename
ArchLinuxanyanywebkit2gtk< 2.30.3-1UNKNOWN

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.017

Percentile

87.8%