310 matches found
TencentOS Server 3: webkit2gtk3 (TSSA-2025:1000)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:1000 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
CVE-2023-40413
The issue was addressed with improved handling of caches. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Monterey 12.7.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1, macOS Sonoma 14.1. An app may be able to read sensitive location information...
CVE-2023-40428
The issue was addressed with improved handling of caches. This issue is fixed in iOS 17 and iPadOS 17. An app may be able to access sensitive user data...
CVE-2023-40395
The issue was addressed with improved handling of caches. This issue is fixed in tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to access contacts...
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: Update to version 2.50.4. Security issues fixed: CVE-2025-13502: processing of maliciously crafted payloads by the GLib remote inspector server may lead to a UIProcess crash due to an out-of-bounds read and an integer underflow bsc1254208...
SUSE-SU-2026:0021-1 Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: Update to version 2.50.4. Security issues fixed: - CVE-2025-13502: processing of maliciously crafted payloads by the GLib remote inspector server may lead to a UIProcess crash due to an out-of-bounds read and an integer underflow bsc1254208....
Important: webkitgtk4
Issue Overview: A flaw was found in WebKitGTK and WPE WebKit. This vulnerability allows an out-of-bounds read and integer underflow, leading to a UIProcess crash DoS via a crafted payload to the GLib remote inspector server. CVE-2025-13502 A flaw was found in WebKitGTK. This vulnerability allows...
webkitgtk: A website may exfiltrate image data cross-origin
A flaw was found in WebKitGTK. A malicious website may exfiltrate image data cross-origin due to improper handling of caches...
webkitgtk: A website may exfiltrate image data cross-origin
A flaw was found in WebKitGTK. A malicious website may exfiltrate image data cross-origin due to improper handling of caches...
CVE-2025-43514
The issue was addressed with improved handling of caches. This issue is fixed in macOS Tahoe 26.2. An app may be able to access protected user data...
CVE-2025-46278
The issue was addressed with improved handling of caches. This issue is fixed in macOS Tahoe 26.2. An app may be able to access protected user data...
webkitgtk: A website may exfiltrate image data cross-origin
A flaw was found in WebKitGTK. A malicious website may exfiltrate image data cross-origin due to improper handling of caches...
webkitgtk: A website may exfiltrate image data cross-origin
A flaw was found in WebKitGTK. A malicious website may exfiltrate image data cross-origin due to improper handling of caches...
CVE-2025-46278
The issue was addressed with improved handling of caches. This issue is fixed in macOS Tahoe 26.2. An app may be able to access protected user data...
CVE-2025-46278
The issue was addressed with improved handling of caches. This issue is fixed in macOS Tahoe 26.2. An app may be able to access protected user data...
CVE-2025-43514
The issue was addressed with improved handling of caches. This issue is fixed in macOS Tahoe 26.2. An app may be able to access protected user data...
CVE-2025-43514
The issue was addressed with improved handling of caches. This issue is fixed in macOS Tahoe 26.2. An app may be able to access protected user data...
CVE-2025-43514
The issue was addressed with improved handling of caches. This issue is fixed in macOS Tahoe 26.2. An app may be able to access protected user data...
CVE-2025-43514
The issue was addressed with improved handling of caches. This issue is fixed in macOS Tahoe 26.2. An app may be able to access protected user data...
CVE-2025-43514
CVE-2025-43514 is a macOS Tahoe cache-handling issue that could allow an app to access protected user data. The vulnerability is addressed in macOS Tahoe 26.2; affected systems running Tahoe prior to 26.2 are impacted. Appleās security content notes this under macOS Tahoe 26.2 with the fix descri...