Updated webkit2 packages fix security vulnerability

🗓️ 01 Jul 2018 17:17:14Reported by Gentoo FoundationType

mageia

mageia🔗 advisories.mageia.org👁 40 Views

Updated webkit2 package to v2.20.3, fixes security vulnerability

Reporter	Title	Published	Views	Family All 189
0day.today	WebKitGTK+ < 2.21.3 - pageURL Mishandling Crash (PoC) Exploit	6 Jun 201800:00	–	zdt
0day.today	WebKit - Use-After-Free when Resuming Generator Exploit	9 Jun 201800:00	–	zdt
0day.today	WebKit - WebAssembly Compilation Info Leak Exploit	9 Jun 201800:00	–	zdt
0day.today	WebKitGTK+ < 2.21.3 - #WebKitFaviconDatabase DoS Exploit	11 Jun 201800:00	–	zdt
0day.today	Safari - Proxy Object Type Confusion Exploit	14 Dec 201800:00	–	zdt
0day.today	Safari Webkit Proxy Object Type Confusion Exploit	3 Jun 201900:00	–	zdt
Gitee	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Safari	14 Sep 202518:29	–	gitee
Gitee	Exploit for CVE-2016-2434	6 Jul 202503:23	–	gitee
GithubExploit	Exploit for Incorrect Type Conversion or Cast in Redhat Enterprise_Linux_Desktop	16 Jan 201913:15	–	githubexploit
GithubExploit	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Safari	8 Aug 201814:41	–	githubexploit

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	6	any	webkit2	2.20.3-1	webkit2-2.20.3-1.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
webkitgtk	www.webkitgtk.org/security/WSA-2018-0005.html
webkitgtk	www.webkitgtk.org/2018/06/11/webkitgtk2.20.3-released.html

01 Jul 2018 17:17Current

3.5Low risk

Vulners AI Score3.5

CVSS 26.8

CVSS 38.8

CVSS 3.18.8

EPSS0.89897

SSVC

webkit2 package update version 2.20.3 security vulnerability bug fixes unix