45 matches found
MiracleLinux 8 : webkit2gtk3-2.36.7-1.el8.1.ML.1 (AXSA:2023-4616:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4616:01 advisory. webkitgtk: processing maliciously crafted web content may lead to an arbitrary code execution CVE-2022-42856 Tenable has extracted the preceding description...
TencentOS Server 3: webkit2gtk3 (TSSA-2023:0001)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0001 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
Alibaba Cloud Linux 3 : 0001: webkit2gtk3 (ALINUX3-SA-2023:0001)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0001 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-42856: A type confusion issue was addresse...
CentOS 8 : webkit2gtk3 (CESA-2023:0016)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:0016 advisory. - A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS...
Rocky Linux 9 : webkit2gtk3 (RLSA-2023:0021)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:0021 advisory. - A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS...
Rocky Linux 8 : webkit2gtk3 (RLSA-2023:0016)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:0016 advisory. - A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS...
Spyware Vendors Caught Exploiting Zero-Day Vulnerabilities on Android and iOS Devices
A number of zero-day vulnerabilities that were addressed last year were exploited by commercial spyware vendors to target Android and iOS devices, Google's Threat Analysis Group TAG has revealed. The two distinct campaigns were both limited and highly targeted, taking advantage of the patch gap...
Apple Issues Updates for Older Devices to Fix Actively Exploited Vulnerability
Apple has backported fixes for a recently disclosed critical security flaw affecting older devices, citing evidence of active exploitation. The issue, tracked as CVE-2022-42856, is a type confusion vulnerability in the WebKit browser engine that could result in arbitrary code execution when...
About the security content of iOS 12.5.7
About the security content of iOS 12.5.7 This document describes the security content of iOS 12.5.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
[SECURITY] [DLA 3274-1] webkit2gtk security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3274-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort January 19, 2023 https://wiki.debian.org/LTS -...
Debian dla-3274 : gir1.2-javascriptcoregtk-4.0 - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3274 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3274-1 [email protected]...
SUSE: Security Advisory (SUSE-SU-2023:0061-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-5797-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 20.04 LTS / 22.04 LTS : WebKitGTK vulnerabilities (USN-5797-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5797-1 advisory. Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website,...
webkit2gtk3 security update
2.36.7-1.1 - Add patch for CVE-2022-42856 Resolves: 2153735...
Oracle Linux 8 : webkit2gtk3 (ELSA-2023-0016)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-0016 advisory. 2.36.7-1.1 - Add patch for CVE-2022-42856 Resolves: 2153735 Tenable has extracted the preceding description block directly from the Oracle Linux security...
Oracle Linux 9 : webkit2gtk3 (ELSA-2023-0021)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-0021 advisory. 2.36.7-1.1 - Add patch for CVE-2022-42856 Resolves: 2153738 Tenable has extracted the preceding description block directly from the Oracle Linux security...
Important: Red Hat Security Advisory: webkit2gtk3 security update
An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...
webkit2gtk3 security update
An update is available for webkit2gtk3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list WebKitGTK is the port of the portable web rendering engine WebKit to the...
Important: Red Hat Security Advisory: webkit2gtk3 security update
An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...