Lucene search
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.ALMA_LINUX_ALSA-2021-1586.NASLHistoryFeb 09, 2022 - 12:00 a.m.
AlmaLinux 8 : GNOME (ALSA-2021:1586)
2022-02-0900:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:1586 advisory.
-
The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 creates directories using g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents (kfsb->file, contents, length, NULL, FALSE, G_FILE_CREATE_REPLACE_DESTINATION, NULL, NULL, NULL).
Consequently, it does not properly restrict directory (and file) permissions. Instead, for directories, 0777 permissions are used; for files, default file permissions are used. This is similar to CVE-2019-12450. (CVE-2019-13012) -
A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0.
Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2020-9948) -
A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.0.
Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2020-9951) -
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to code execution. (CVE-2020-9983)
-
A code execution vulnerability exists in the WebSocket functionality of Webkit WebKitGTK 2.30.0. A specially crafted web page can trigger a use-after-free vulnerability which can lead to remote code execution. An attacker can get a user to visit a webpage to trigger this vulnerability. (CVE-2020-13543)
-
An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.1 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in a remote code execution. The victim needs to visit a malicious web site to trigger this vulnerability. (CVE-2020-13584)
-
gdm3 versions before 3.36.2 or 3.38.2 would start gnome-initial-setup if gdm3 can’t contact the accountservice service via dbus in a timely manner; on Ubuntu (and potentially derivatives) this could be be chained with an additional issue that could allow a local user to create a new privileged account.
(CVE-2020-16125) -
A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2021-1817)
-
A memory initialization issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may result in the disclosure of process memory. (CVE-2021-1820)
-
An input validation issue was addressed with improved input validation. This issue is fixed in iTunes 12.11.3 for Windows, iCloud for Windows 12.3, macOS Big Sur 11.3, Safari 14.1, watchOS 7.4, tvOS 14.5, iOS 14.5 and iPadOS 14.5. Processing maliciously crafted web content may lead to a cross site scripting attack. (CVE-2021-1825)
-
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may lead to universal cross site scripting. (CVE-2021-1826)
-
A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.1, iOS 12.5.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited… (CVE-2021-30661)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
#
# The package checks in this plugin were extracted from
# AlmaLinux Security Advisory ALSA-2021:1586.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(157668);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/04/25");
script_cve_id(
"CVE-2019-13012",
"CVE-2020-9948",
"CVE-2020-9951",
"CVE-2020-9983",
"CVE-2020-13543",
"CVE-2020-13584",
"CVE-2020-16125",
"CVE-2021-1817",
"CVE-2021-1820",
"CVE-2021-1825",
"CVE-2021-1826",
"CVE-2021-30661"
);
script_xref(name:"ALSA", value:"2021:1586");
script_xref(name:"IAVA", value:"2021-A-0202-S");
script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2021/11/17");
script_name(english:"AlmaLinux 8 : GNOME (ALSA-2021:1586)");
script_set_attribute(attribute:"synopsis", value:
"The remote AlmaLinux host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the
ALSA-2021:1586 advisory.
- The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 creates directories using
g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents
(kfsb->file, contents, length, NULL, FALSE, G_FILE_CREATE_REPLACE_DESTINATION, NULL, NULL, NULL).
Consequently, it does not properly restrict directory (and file) permissions. Instead, for directories,
0777 permissions are used; for files, default file permissions are used. This is similar to
CVE-2019-12450. (CVE-2019-13012)
- A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0.
Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2020-9948)
- A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.0.
Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2020-9951)
- An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Safari
14.0. Processing maliciously crafted web content may lead to code execution. (CVE-2020-9983)
- A code execution vulnerability exists in the WebSocket functionality of Webkit WebKitGTK 2.30.0. A
specially crafted web page can trigger a use-after-free vulnerability which can lead to remote code
execution. An attacker can get a user to visit a webpage to trigger this vulnerability. (CVE-2020-13543)
- An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.1 x64. A specially
crafted HTML web page can cause a use-after-free condition, resulting in a remote code execution. The
victim needs to visit a malicious web site to trigger this vulnerability. (CVE-2020-13584)
- gdm3 versions before 3.36.2 or 3.38.2 would start gnome-initial-setup if gdm3 can't contact the
accountservice service via dbus in a timely manner; on Ubuntu (and potentially derivatives) this could be
be chained with an additional issue that could allow a local user to create a new privileged account.
(CVE-2020-16125)
- A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big
Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may
lead to arbitrary code execution. (CVE-2021-1817)
- A memory initialization issue was addressed with improved memory handling. This issue is fixed in macOS
Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content
may result in the disclosure of process memory. (CVE-2021-1820)
- An input validation issue was addressed with improved input validation. This issue is fixed in iTunes
12.11.3 for Windows, iCloud for Windows 12.3, macOS Big Sur 11.3, Safari 14.1, watchOS 7.4, tvOS 14.5, iOS
14.5 and iPadOS 14.5. Processing maliciously crafted web content may lead to a cross site scripting
attack. (CVE-2021-1825)
- A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.3, iOS
14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may lead to
universal cross site scripting. (CVE-2021-1826)
- A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.1,
iOS 12.5.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing maliciously
crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may
have been actively exploited.. (CVE-2021-30661)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://errata.almalinux.org/8/ALSA-2021-1586.html");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-30661");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/06/28");
script_set_attribute(attribute:"patch_publication_date", value:"2021/05/18");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/02/09");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:OpenEXR-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:OpenEXR-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:accountsservice-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:atkmm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:atkmm-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:atkmm-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:cairomm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:cairomm-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:cairomm-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:chrome-gnome-shell");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:dleyna-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:dleyna-server");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:enchant2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:enchant2-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gamin");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gamin-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:geoclue2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:geoclue2-demos");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:geoclue2-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:geoclue2-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:geocode-glib");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:geocode-glib-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gjs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gjs-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:glib2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:glib2-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:glib2-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:glib2-fam");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:glib2-static");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:glib2-tests");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:glibmm24");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:glibmm24-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:glibmm24-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gnome-boxes");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gnome-photos");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gnome-photos-tests");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gnome-terminal");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gnome-terminal-nautilus");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtk-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtk2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtk2-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtk2-devel-docs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtk2-immodule-xim");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtk2-immodules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtkmm24");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtkmm24-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtkmm24-docs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtkmm30");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtkmm30-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gtkmm30-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-afc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-afp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-archive");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-client");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-fuse");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-goa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-gphoto2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-mtp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:gvfs-smb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libdazzle");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libdazzle-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libepubgen");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libepubgen-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libsass");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libsass-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libsigc++20");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libsigc++20-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libsigc++20-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libvisual");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libvisual-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:mutter-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:nautilus");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:nautilus-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:nautilus-extensions");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:pangomm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:pangomm-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:pangomm-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:soundtouch");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:soundtouch-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:vala");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:vala-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:woff2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:woff2-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Alma Linux Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/AlmaLinux/release", "Host/AlmaLinux/rpm-list", "Host/cpu");
exit(0);
}
include('audit.inc');
include('global_settings.inc');
include('misc_func.inc');
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var release = get_kb_item('Host/AlmaLinux/release');
if (isnull(release) || 'AlmaLinux' >!< release) audit(AUDIT_OS_NOT, 'AlmaLinux');
var os_ver = pregmatch(pattern: "AlmaLinux release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'AlmaLinux');
var os_ver = os_ver[1];
if (! preg(pattern:"^8([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'AlmaLinux 8.x', 'AlmaLinux ' + os_ver);
if (!get_kb_item('Host/AlmaLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'AlmaLinux', cpu);
var pkgs = [
{'reference':'accountsservice-devel-0.6.55-1.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'accountsservice-devel-0.6.55-1.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'atkmm-2.24.2-7.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'atkmm-2.24.2-7.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'atkmm-devel-2.24.2-7.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'atkmm-devel-2.24.2-7.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'atkmm-doc-2.24.2-7.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'cairomm-1.12.0-8.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'cairomm-1.12.0-8.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'cairomm-devel-1.12.0-8.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'cairomm-devel-1.12.0-8.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'cairomm-doc-1.12.0-8.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'chrome-gnome-shell-10.1-7.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'dleyna-core-0.6.0-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'dleyna-core-0.6.0-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'dleyna-server-0.6.0-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'enchant2-2.2.3-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'enchant2-2.2.3-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'enchant2-devel-2.2.3-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'enchant2-devel-2.2.3-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gamin-0.1.10-32.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gamin-0.1.10-32.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gamin-devel-0.1.10-32.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gamin-devel-0.1.10-32.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geoclue2-2.5.5-2.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geoclue2-2.5.5-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geoclue2-demos-2.5.5-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geoclue2-devel-2.5.5-2.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geoclue2-devel-2.5.5-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geoclue2-libs-2.5.5-2.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geoclue2-libs-2.5.5-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geocode-glib-3.26.0-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geocode-glib-3.26.0-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geocode-glib-devel-3.26.0-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'geocode-glib-devel-3.26.0-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gjs-1.56.2-5.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gjs-1.56.2-5.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gjs-devel-1.56.2-5.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gjs-devel-1.56.2-5.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glib2-2.56.4-9.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glib2-2.56.4-9.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glib2-devel-2.56.4-9.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glib2-devel-2.56.4-9.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glib2-doc-2.56.4-9.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glib2-fam-2.56.4-9.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glib2-static-2.56.4-9.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glib2-static-2.56.4-9.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glib2-tests-2.56.4-9.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glibmm24-2.56.0-2.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glibmm24-2.56.0-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glibmm24-devel-2.56.0-2.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glibmm24-devel-2.56.0-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'glibmm24-doc-2.56.0-2.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gnome-boxes-3.36.5-8.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gnome-photos-3.28.1-4.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gnome-photos-tests-3.28.1-4.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gnome-terminal-3.28.3-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gnome-terminal-nautilus-3.28.3-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk-doc-1.28-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk2-2.24.32-5.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk2-2.24.32-5.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk2-devel-2.24.32-5.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk2-devel-2.24.32-5.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk2-devel-docs-2.24.32-5.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk2-immodule-xim-2.24.32-5.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk2-immodule-xim-2.24.32-5.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk2-immodules-2.24.32-5.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtk2-immodules-2.24.32-5.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm24-2.24.5-6.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm24-2.24.5-6.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm24-devel-2.24.5-6.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm24-devel-2.24.5-6.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm24-docs-2.24.5-6.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm30-3.22.2-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm30-3.22.2-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm30-devel-3.22.2-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm30-devel-3.22.2-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gtkmm30-doc-3.22.2-3.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-1.36.2-11.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-afc-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-afp-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-archive-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-client-1.36.2-11.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-client-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-devel-1.36.2-11.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-devel-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-fuse-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-goa-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-gphoto2-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-mtp-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'gvfs-smb-1.36.2-11.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libdazzle-3.28.5-2.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libdazzle-3.28.5-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libdazzle-devel-3.28.5-2.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libdazzle-devel-3.28.5-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libepubgen-0.1.0-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libepubgen-0.1.0-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libepubgen-devel-0.1.0-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libepubgen-devel-0.1.0-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsass-3.4.5-6.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsass-3.4.5-6.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsass-devel-3.4.5-6.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsass-devel-3.4.5-6.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsigc++20-2.10.0-6.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsigc++20-2.10.0-6.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsigc++20-devel-2.10.0-6.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsigc++20-devel-2.10.0-6.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsigc++20-doc-2.10.0-6.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libvisual-0.4.0-25.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'libvisual-0.4.0-25.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'libvisual-devel-0.4.0-25.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'libvisual-devel-0.4.0-25.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'mutter-devel-3.32.2-57.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'mutter-devel-3.32.2-57.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'nautilus-3.28.1-15.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'nautilus-3.28.1-15.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'nautilus-devel-3.28.1-15.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'nautilus-devel-3.28.1-15.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'nautilus-extensions-3.28.1-15.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'nautilus-extensions-3.28.1-15.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'OpenEXR-devel-2.2.0-12.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'OpenEXR-devel-2.2.0-12.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'OpenEXR-libs-2.2.0-12.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'OpenEXR-libs-2.2.0-12.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pangomm-2.40.1-6.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pangomm-2.40.1-6.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pangomm-devel-2.40.1-6.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pangomm-devel-2.40.1-6.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pangomm-doc-2.40.1-6.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'soundtouch-2.0.0-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'soundtouch-2.0.0-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'soundtouch-devel-2.0.0-3.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'soundtouch-devel-2.0.0-3.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vala-0.40.19-2.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vala-0.40.19-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vala-devel-0.40.19-2.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vala-devel-0.40.19-2.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'woff2-1.0.2-5.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'woff2-1.0.2-5.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'woff2-devel-1.0.2-5.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'woff2-devel-1.0.2-5.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var release = NULL;
var sp = NULL;
var cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) release = 'Alma-' + package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (reference && release && (!exists_check || rpm_exists(release:release, rpm:exists_check))) {
if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'OpenEXR-devel / OpenEXR-libs / accountsservice-devel / atkmm / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| alma | linux | openexr-devel | p-cpe:/a:alma:linux:openexr-devel |
| alma | linux | openexr-libs | p-cpe:/a:alma:linux:openexr-libs |
| alma | linux | accountsservice-devel | p-cpe:/a:alma:linux:accountsservice-devel |
| alma | linux | geocode-glib | p-cpe:/a:alma:linux:geocode-glib |
| alma | linux | geocode-glib-devel | p-cpe:/a:alma:linux:geocode-glib-devel |
| alma | linux | gjs | p-cpe:/a:alma:linux:gjs |
| alma | linux | gjs-devel | p-cpe:/a:alma:linux:gjs-devel |
| alma | linux | glib2 | p-cpe:/a:alma:linux:glib2 |
| alma | linux | glib2-devel | p-cpe:/a:alma:linux:glib2-devel |
| alma | linux | glib2-doc | p-cpe:/a:alma:linux:glib2-doc |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13012
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13543
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13584
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16125
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9948
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9951
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9983
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1817
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1820
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1825
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1826
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30661
errata.almalinux.org/8/ALSA-2021-1586.html
Related
nessus
nessus
RHEL 8 : GNOME (RHSA-2021:1586)
2021-05-19 00:00:00
Rocky Linux 8 : GNOME (RLSA-2021:1586)
2022-02-09 00:00:00
rocky
rocky
GNOME security, bug fix, and enhancement update
2021-05-18 05:35:26
redhat
redhat
(RHSA-2021:1586) Moderate: GNOME security, bug fix, and enhancement update
2021-05-18 05:35:26
(RHSA-2019:3530) Moderate: glib2 security, bug fix, and enhancement update
2019-11-05 17:56:44
osv
osv
Moderate: GNOME security, bug fix, and enhancement update
2021-05-18 05:35:26
Moderate: GNOME security, bug fix, and enhancement update
2021-05-18 05:35:26
webkit2gtk - security update
2020-11-23 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-4797-1)
2020-11-26 00:00:00
Mageia: Security Advisory (MGASA-2020-0441)
2022-01-28 00:00:00
Apple Safari Security Update (APPLE-SA-2020-09-16-3)
2020-09-22 00:00:00
oraclelinux
oraclelinux
GNOME security, bug fix, and enhancement update
2021-05-25 00:00:00
glib2 security, bug fix, and enhancement update
2019-11-14 00:00:00
almalinux
almalinux
Moderate: GNOME security, bug fix, and enhancement update
2021-05-18 05:35:26
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2020-11-27 23:14:57
Updated gdm packages fix a security vulnerability
2021-01-04 17:42:30
Updated glib2.0 packages fix security vulnerability
2019-11-30 16:06:06
gentoo
gentoo
WebkitGTK+: Multiple vulnerabilities
2020-12-23 00:00:00
debian
debian
[SECURITY] [DSA 4797-1] webkit2gtk security update
2020-11-24 18:45:16
[SECURITY] [DLA 1866-1] glib2.0 security update
2019-07-31 18:51:21
[SECURITY] [DLA 2434-1] gdm3 security update
2020-11-05 12:41:14
archlinux
archlinux
[ASA-202011-28] webkit2gtk: arbitrary code execution
2020-11-26 00:00:00
[ASA-202011-5] gdm: privilege escalation
2020-11-10 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: webkit2gtk3-2.30.3-1.fc33
2020-11-29 01:27:55
[SECURITY] Fedora 32 Update: webkit2gtk3-2.30.3-1.fc32
2020-12-04 00:30:44
[SECURITY] Fedora 30 Update: glib2-2.60.4-1.fc30
2019-06-17 18:29:34
redhatcve
redhatcve
cve
cve
debiancve
debiancve
suse
suse
Security update for webkit2gtk3 (important)
2020-12-21 00:00:00
Security update for webkit2gtk3 (important)
2020-12-21 00:00:00
Security update for gdm (important)
2020-12-15 00:00:00
ubuntucve
ubuntucve
prion
prion
Null pointer dereference
2019-06-28 15:15:00
Code injection
2020-11-10 05:15:00
Remote code execution
2020-12-03 17:15:00
ubuntu
ubuntu
WebKitGTK vulnerabilities
2020-11-26 00:00:00
GDM vulnerability
2020-11-03 00:00:00
GLib vulnerability
2019-07-08 00:00:00
apple
apple
About the security content of Safari 14.1
2021-04-26 00:00:00
About the security content of Safari 14.0 - Apple Support
2020-11-12 10:19:34
About the security content of Safari 14.0
2020-09-16 00:00:00
thn
thn
Hackers Exploit 0-Day Gatekeeper Flaw to Attack macOS Computers
2021-04-27 10:29:00
veracode
veracode
Denial Of Service (DoS)
2021-04-29 12:13:09
Remote Code Execution (RCE)
2021-04-29 12:12:08
Denial Of Service (DoS)
2020-11-09 05:49:14
talos
talos
Webkit WebSocket code execution vulnerability
2020-11-30 00:00:00
Webkit ImageDecoderGStreamer use-after-free vulnerability
2020-11-30 00:00:00
cnvd
cnvd
WebKitGTK post-release reuse vulnerability
2020-12-04 00:00:00
alpinelinux
alpinelinux
attackerkb
attackerkb
CVE-2021-30661
2021-09-08 00:00:00
cisa_kev
cisa_kev
Apple Multiple Products Use-After-Free Vulnerability
2021-11-03 00:00:00
cloudfoundry
cloudfoundry
USN-4049-1: GLib vulnerability | Cloud Foundry
2019-08-29 00:00:00
USN-4014-1: GLib vulnerability | Cloud Foundry
2019-06-18 00:00:00
cbl_mariner
cbl_mariner
CVE-2019-12450 affecting package glib 2.58.0-10
2020-09-09 06:09:08
CVE-2019-12450 affecting package glib 2.60.1-5
2022-04-09 06:51:45
CVE-2019-13012 affecting package glib 2.58.0-10
2020-09-09 06:09:08
amazon
amazon
Related for ALMA_LINUX_ALSA-2021-1586.NASL