webkit2gtk - security update


The following vulnerabilities have been discovered in the WebKitGTK web engine: * [CVE-2022-22677](https://security-tracker.debian.org/tracker/CVE-2022-22677) An anonymous researcher discovered that the video in a webRTC call may be interrupted if the audio capture gets interrupted. * [CVE-2022-26710](https://security-tracker.debian.org/tracker/CVE-2022-26710) Chijin Zhou discovered that processing maliciously crafted web content may lead to arbitrary code execution. For the oldstable distribution (buster), these problems have been fixed in version 2.36.4-1~deb10u1. For the stable distribution (bullseye), these problems have been fixed in version 2.36.4-1~deb11u1. We recommend that you upgrade your webkit2gtk packages. For the detailed security status of webkit2gtk please refer to its security tracker page at: <https://security-tracker.debian.org/tracker/webkit2gtk>

Affected Software

CPE Name Name Version
webkit2gtk 2.32.3-1
webkit2gtk 2.32.4-1
webkit2gtk 2.32.4-1~deb10u1
webkit2gtk 2.32.4-1~deb11u1
webkit2gtk 2.33.1-1
webkit2gtk 2.33.2-1
webkit2gtk 2.33.3-1
webkit2gtk 2.33.90-1
webkit2gtk 2.33.91-1
webkit2gtk 2.34.0-1
webkit2gtk 2.34.0-1~bpo11+1
webkit2gtk 2.34.1-1
webkit2gtk 2.34.1-1~deb10u1
webkit2gtk 2.34.1-1~deb11u1
webkit2gtk 2.34.2-1
webkit2gtk 2.34.2-1~bpo11+1
webkit2gtk 2.34.3-1
webkit2gtk 2.34.3-1~deb10u1
webkit2gtk 2.34.3-1~deb11u1
webkit2gtk 2.34.4-1
webkit2gtk 2.34.4-1~deb10u1
webkit2gtk 2.34.4-1~deb11u1
webkit2gtk 2.34.5-1
webkit2gtk 2.34.6-1
webkit2gtk 2.34.6-1~deb10u1
webkit2gtk 2.34.6-1~deb11u1
webkit2gtk 2.35.1-1
webkit2gtk 2.35.2-1
webkit2gtk 2.35.3-1
webkit2gtk 2.35.90-1
webkit2gtk 2.36.0-1
webkit2gtk 2.36.0-2
webkit2gtk 2.36.0-3
webkit2gtk 2.36.0-3~deb10u1
webkit2gtk 2.36.0-3~deb11u1
webkit2gtk 2.36.1-1
webkit2gtk 2.36.2-1
webkit2gtk 2.36.3-1
webkit2gtk 2.36.3-1~deb10u1
webkit2gtk 2.36.3-1~deb11u1
webkit2gtk 2.36.4-1~deb10u1