Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-42956HistoryMar 28, 2024 - 4:15 p.m.
CVE-2023-42956
2024-03-2816:15:08
Debian Security Bug Tracker
security-tracker.debian.org
20
cve-2023-42956
memory handling
safari 17.2
ios 17.2
ipados 17.2
macos sonoma 14.2
denial-of-service
web content
unix
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
7.9
Confidence
High
EPSS
0.001
Percentile
29.1%
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, macOS Sonoma 14.2. Processing web content may lead to a denial-of-service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | webkit2gtk | < 2.44.1-1~deb12u1 | webkit2gtk_2.44.1-1~deb12u1_all.deb |
| Debian | 11 | all | webkit2gtk | < 2.44.1-1~deb11u1 | webkit2gtk_2.44.1-1~deb11u1_all.deb |
| Debian | 999 | all | webkit2gtk | < 2.44.0-1 | webkit2gtk_2.44.0-1_all.deb |
| Debian | 13 | all | webkit2gtk | < 2.44.0-1 | webkit2gtk_2.44.0-1_all.deb |
| Debian | 12 | all | wpewebkit | <= 2.38.6-1 | wpewebkit_2.38.6-1_all.deb |
| Debian | 11 | all | wpewebkit | <= 2.38.6-1~deb11u1 | wpewebkit_2.38.6-1~deb11u1_all.deb |
| Debian | 999 | all | wpewebkit | < 2.44.1-1 | wpewebkit_2.44.1-1_all.deb |
| Debian | 13 | all | wpewebkit | < 2.44.1-1 | wpewebkit_2.44.1-1_all.deb |
Related
vulnrichment
vulnrichment
CVE-2023-42956
2024-03-28 15:39:18
cvelist
cvelist
CVE-2023-42956
2024-03-28 15:39:18
cve
cve
CVE-2023-42956
2024-03-28 16:15:08
redhatcve
redhatcve
CVE-2023-42956
2024-03-27 03:51:16
ubuntucve
ubuntucve
CVE-2023-42956
2024-03-28 00:00:00
osv
osv
CVE-2023-42956
2024-03-28 16:15:08
webkit2gtk vulnerabilities
2024-04-15 16:29:45
webkit2gtk - security update
2024-05-09 00:00:00
nvd
nvd
CVE-2023-42956
2024-03-28 16:15:08
nessus
nessus
Amazon Linux 2 : webkitgtk4 (ALAS-2024-2516)
2024-04-18 00:00:00
RHEL 8 : webkitgtk (Unpatched Vulnerability)
2024-06-03 00:00:00
SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2024:1293-1)
2024-04-16 00:00:00
amazon
amazon
Medium: webkitgtk4
2024-04-11 01:07:00
apple
apple
About the security content of Safari 17.2
2023-12-11 00:00:00
About the security content of iOS 17.2 and iPadOS 17.2
2023-12-11 00:00:00
About the security content of macOS Sonoma 14.2
2023-12-11 00:00:00
openvas
openvas
Apple Safari Security Update (HT214039)
2023-12-14 00:00:00
Ubuntu: Security Advisory (USN-6732-1)
2024-04-16 00:00:00
Fedora: Security Advisory (FEDORA-2024-a1246372a4)
2024-05-27 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: webkit2gtk4.0-2.44.1-1.fc40
2024-05-07 05:21:22
ubuntu
ubuntu
WebKitGTK vulnerabilities
2024-04-15 00:00:00
debian
debian
[SECURITY] [DSA 5684-1] webkit2gtk security update
2024-05-09 07:57:13
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2024-07-05 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2024-04-26 09:47:12
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
7.9
Confidence
High
EPSS
0.001
Percentile
29.1%
Related for DEBIANCVE:CVE-2023-42956