3777 matches found
EUVD-2022-52245
Malicious code in bioql PyPI...
EUVD-2021-32249
Malicious code in bioql PyPI...
[SECURITY] Fedora 43 Update: webkitgtk-2.50.0-2.fc43
WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...
Fedora 43 : webkitgtk (2025-793513dcf7)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-793513dcf7 advisory. Update to 2.50.0: Improved rendering performance by recording each layer once and replaying every dirty region in different worker threads. Enable damage...
Fedora 42 : webkitgtk (2025-fcc043d407)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-fcc043d407 advisory. Update to 2.50.0: Improved rendering performance by recording each layer once and replaying every dirty region in different worker threads. Enable...
Use After Free
Overview Affected versions of this package are vulnerable to Use After Free via the memory management process. An attacker can execute arbitrary code or cause a crash by tricking a user into processing or loading malicious web content. This is only exploitable if the system has specific packages...
Uncaught Exception
Overview Affected versions of this package are vulnerable to Uncaught Exception. An attacker can cause an unexpected process crash by tricking a user into processing or loading malicious web content. Note: This is only exploitable if the affected system has specific packages installed and is bein...
CVE-2025-43272
A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling. Mitigation Do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the following packages require WebKitGTK4:...
CVE-2025-43342
A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper checks. Mitigation Do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server,...
CVE-2025-43356
A flaw was found in WebKitGTK. A malicious website can obtain access to sensor information without user consent due to improper handling of caches. Mitigation Do not visit untrusted websites. Also, do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the...
CVE-2025-43368
A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash. Mitigation Do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the following packag...
CVE-2025-43368
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26, iOS 26 and iPadOS 26, macOS Tahoe 26. Processing maliciously crafted web content may lead to an unexpected Safari crash...
CVE-2025-43356
The issue was addressed with improved handling of caches. This issue is fixed in Safari 26, iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, watchOS 26. A website may be able to access sensor information without user consent...
CVE-2025-43342
A correctness issue was addressed with improved checks. This issue is fixed in Safari 26, iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, watchOS 26. Processing maliciously crafted web content may lead to an unexpected process crash...
Important: Red Hat Security Advisory: webkitgtk4 security update
An update for webkitgtk4 is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
webkitgtk: Processing maliciously crafted web content may disclose internal states of the app
A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper input validation, resulting in the disclosure of the internal states of the application...
webkitgtk: Processing maliciously crafted web content may lead to memory corruption
A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling...
webkitgtk: Processing maliciously crafted web content may lead to memory corruption
A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling...
webkitgtk: Processing web content may lead to a denial-of-service
A flaw was found in WebKitGTK. Processing malicious web content can cause a denial of service due to improper memory handling...
webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash
A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling...