Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2024/09/10 12:0 a.m.10 views

NewStart CGSL MAIN 6.02 : webkit2gtk3 Multiple Vulnerabilities (NS-SA-2024-0053)

The remote NewStart CGSL host, running version MAIN 6.02, has webkit2gtk3 packages installed that are affected by multiple vulnerabilities: - A use-after-free issue was found in the AudioSourceProviderGStreamer class of WebKitGTK and WPE WebKit in versions prior to 2.30.5. Processing maliciously...

9.8CVSS7.2AI score0.16342EPSS
Exploits11References115
SUSE CVE
SUSE CVE
added 2023/02/15 3:58 a.m.3 views

SUSE CVE-2020-13558

A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free...

8.8CVSS7.6AI score0.01792EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2021/11/09 6:30 p.m.113 views

Moderate: Red Hat Security Advisory: GNOME security, bug fix, and enhancement update

An update for GNOME is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS7.3AI score0.14542EPSS
Exploits8References70
OSV
OSV
added 2021/11/09 9:15 a.m.52 views

RLSA-2021:4381 Moderate: GNOME security, bug fix, and enhancement update

GNOME is the default desktop environment of Rocky Linux. The following packages have been upgraded to a later upstream version: gdm 40.0, webkit2gtk3 2.32.3. BZ1909300 Security Fixes: webkitgtk: Use-after-free in AudioSourceProviderGStreamer leading to arbitrary code execution CVE-2020-13558...

9.8CVSS9.1AI score0.14542EPSS
Exploits8References69
AlmaLinux
AlmaLinux
added 2021/11/09 9:15 a.m.68 views

Moderate: GNOME security, bug fix, and enhancement update

GNOME is the default desktop environment of AlmaLinux. The following packages have been upgraded to a later upstream version: gdm 40.0, webkit2gtk3 2.32.3. BZ1909300 Security Fixes: webkitgtk: Use-after-free in AudioSourceProviderGStreamer leading to arbitrary code execution CVE-2020-13558 LibRaw...

9.8CVSS9.1AI score0.14542EPSS
Exploits8References30
Tenable Nessus
Tenable Nessus
added 2021/06/21 12:0 a.m.235 views

SUSE SLED12: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2021:1990-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:1990-1 advisory. - Update to version 2.32.1: - Improve handling of Media Capture devices. - Improve WebAudio playback. - Improve video...

9.8CVSS7.1AI score0.14542EPSS
Exploits3References41
OpenVAS
OpenVAS
added 2021/06/18 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2021:1990-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.14542EPSS
Exploits3References11
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2021:0536-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.01792EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2021:0583-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.01792EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.13 views

openSUSE: Security Advisory for webkit2gtk3 (openSUSE-SU-2021:0376-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.8AI score0.01792EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/03/23 12:0 a.m.53 views

Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerability (USN-4739-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4739-1 advisory. A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website...

8.8CVSS7.6AI score0.01792EPSS
Exploits1References2
OSV
OSV
added 2021/03/03 6:15 p.m.8 views

CVE-2020-13558

A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free...

8.8CVSS9.2AI score
Exploits0References2
CVE
CVE
added 2021/03/03 5:53 p.m.318 views

CVE-2020-13558

The CVE-2020-13558 entry concerns WebKitGTK/WebKit2GTK 2.30.1 where AudioSourceProviderGStreamer contains a use-after-free that can be triggered by processing crafted web content, potentially allowing arbitrary code execution. Connected advisories confirm affected products and fixes: Debian lists...

8.8CVSS8.5AI score0.01792EPSS
Exploits1References2Affected Software1
AlpineLinux
AlpineLinux
added 2021/03/03 5:53 p.m.52 views

CVE-2020-13558

A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free...

8.8CVSS8.8AI score0.01792EPSS
Exploits1
OSV
OSV
added 2021/03/03 9:5 a.m.10 views

OPENSUSE-SU-2021:0376-1 Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: Update to version 2.30.5 bsc1182286: + Bring back the WebKitPluginProcess installation that was removed by mistake. + Fix RunLoop objects leaked in worker threads. + Fix aarch64 llint build with JIT disabled. + Use Internet Explorer quirk fo...

8.8CVSS8.7AI score0.01792EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
added 2021/03/03 12:0 a.m.30 views

Security update for webkit2gtk3 (important)

openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2021:0376-1 Rating: important References: 1182286 Cross-References: CVE-2020-13558 CVSS scores: CVE-2020-13558 SUSE: 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 An...

8.8CVSS8.8AI score0.01792EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2021/02/25 12:0 a.m.35 views

SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:0583-1)

This update for webkit2gtk3 fixes the following issues : Update to version 2.30.5 bsc1182286 : + Bring back the WebKitPluginProcess installation that was removed by mistake. + Fix RunLoop objects leaked in worker threads. + Fix aarch64 llint build with JIT disabled. + Use Internet Explorer quirk...

8.8CVSS7.7AI score0.01792EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/02/23 12:0 a.m.29 views

SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:0536-1)

This update for webkit2gtk3 fixes the following issues : Update to version 2.30.5 bsc1182286 : + Bring back the WebKitPluginProcess installation that was removed by mistake. + Fix RunLoop objects leaked in worker threads. + Fix aarch64 llint build with JIT disabled. + Use Internet Explorer quirk...

8.8CVSS7.7AI score0.01792EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/02/19 12:0 a.m.30 views

Debian DSA-4854-1 : webkit2gtk - security update

The following vulnerabilities have been discovered in the webkit2gtk web engine : - CVE-2020-13558 Marcin Noga discovered that processing maliciously crafted web content may lead to arbitrary code execution. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

8.8CVSS8AI score0.01792EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/02/19 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-4739-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.7AI score0.01792EPSS
Exploits1References2
Rows per page
Query Builder