Lucene search
AppleCVELIST:CVE-2023-42890HistoryDec 12, 2023 - 12:27 a.m.
CVE-2023-42890
2023-12-1200:27:26
apple
www.cve.org
memory handling
safari 17.2
macos sonoma 14.2
watchos 10.2
ios 17.2
ipados 17.2
tvos 17.2
arbitrary code execution
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, macOS Sonoma 14.2, watchOS 10.2, iOS 17.2 and iPadOS 17.2, tvOS 17.2. Processing web content may lead to arbitrary code execution.
CNA Affected
[
{
"vendor": "Apple",
"product": "Safari",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "17.2",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "17.2",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "tvOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "17.2",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14.2",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "watchOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "10.2",
"versionType": "custom"
}
]
}
]References
seclists.org/fulldisclosure/2023/Dec/12
seclists.org/fulldisclosure/2023/Dec/13
seclists.org/fulldisclosure/2023/Dec/6
seclists.org/fulldisclosure/2023/Dec/7
seclists.org/fulldisclosure/2023/Dec/9
www.openwall.com/lists/oss-security/2023/12/18/1
security.gentoo.org/glsa/202401-33
support.apple.com/en-us/HT214035
support.apple.com/en-us/HT214036
support.apple.com/en-us/HT214039
support.apple.com/en-us/HT214040
support.apple.com/en-us/HT214041
support.apple.com/kb/HT214039
Related
debiancve
debiancve
CVE-2023-42890
2023-12-12 01:15:11
prion
prion
Code injection
2023-12-12 01:15:00
osv
osv
CVE-2023-42890
2023-12-12 01:15:11
webkit2gtk - security update
2023-10-12 00:00:00
Important: webkit2gtk3 security update
2024-04-30 00:00:00
nvd
nvd
CVE-2023-42890
2023-12-12 01:15:11
cve
cve
CVE-2023-42890
2023-12-12 01:15:11
ubuntucve
ubuntucve
CVE-2023-42890
2023-12-12 00:00:00
redhatcve
redhatcve
CVE-2023-42890
2023-12-13 11:31:02
nessus
nessus
Amazon Linux 2 : webkitgtk4 (ALAS-2024-2425)
2024-01-23 00:00:00
SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2023:4978-1)
2023-12-28 00:00:00
SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2024:0003-1)
2024-01-03 00:00:00
amazon
amazon
Important: webkitgtk4
2024-01-19 01:51:00
openvas
openvas
Apple Safari Security Update (HT214039)
2023-12-14 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4978-1)
2023-12-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:0002-1)
2024-01-03 00:00:00
apple
apple
About the security content of Safari 17.2
2023-12-11 00:00:00
About the security content of tvOS 17.2
2023-12-11 00:00:00
About the security content of watchOS 10.2
2023-12-11 00:00:00
thn
thn
oraclelinux
oraclelinux
webkit2gtk3 security update
2024-05-02 00:00:00
webkit2gtk3 security update
2024-05-23 00:00:00
redhat
redhat
(RHSA-2024:2126) Important: webkit2gtk3 security update
2024-04-30 06:14:49
(RHSA-2024:2982) Important: webkit2gtk3 security update
2024-05-22 06:35:16
almalinux
almalinux
Important: webkit2gtk3 security update
2024-05-22 00:00:00
Important: webkit2gtk3 security update
2024-04-30 00:00:00
rocky
rocky
webkit2gtk3 security update
2024-06-14 13:59:30
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2024-01-31 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2024-04-26 09:47:12