29 matches found
openSUSE: Security Advisory for webkit2gtk3 (SUSE-SU-2023:3233-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2023:3300-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3300-1 advisory. Update to version 2.40.5 bsc1213905: - CVE-2023-38133: Fixed information disclosure. - CVE-2023-38572: Fixed Same-Origin-Policy...
SUSE: Security Advisory (SUSE-SU-2023:3237-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Rocky Linux 9 : webkit2gtk3 (RLSA-2023:4201)
The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:4201 advisory. - A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS...
Oracle Linux 9 : webkit2gtk3 (ELSA-2023-4201)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-4201 advisory. 2.38.5-1.3 - Disable JIT CVE-2023-32435, CVE-2023-32439 Tenable has extracted the preceding description block directly from the Oracle Linux security...
webkit2gtk3 security update
2.38.5-1.3 - Disable JIT CVE-2023-32435, CVE-2023-32439...
Amazon Linux 2 : webkitgtk4 (ALAS-2023-2141)
The version of webkitgtk4 installed on the remote host is prior to 2.38.5-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2141 advisory. Processing web content may lead to arbitrary code execution NOTE:...
Oracle Linux 8 : webkit2gtk3 (ELSA-2023-4202)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-4202 advisory. 2.38.5-1.5 - Disable JIT CVE-2023-32435, CVE-2023-32439 Tenable has extracted the preceding description block directly from the Oracle Linux security...
webkit2gtk3 security update
2.38.5-1.5 - Disable JIT CVE-2023-32435, CVE-2023-32439...
Important: webkitgtk4
Issue Overview: Processing web content may lead to arbitrary code execution NOTE: https://webkitgtk.org/security/WSA-2023-0005.html ADVISORIES: 'DSA-5241-1', 'DSA-5240-1' CVE-2022-48503 A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 16.4, iOS...
Important: Red Hat Security Advisory: webkit2gtk3 security update
An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...
Important: Red Hat Security Advisory: webkit2gtk3 security update
An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...
ALSA-2023:4201 Important: webkit2gtk3 security update
WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: memory corruption issue leading to arbitrary code execution CVE-2023-32435 webkitgtk: type confusion issue leading to arbitrary code execution CVE-2023-32439 For more details about th...
Important: webkit2gtk3 security update
WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: memory corruption issue leading to arbitrary code execution CVE-2023-32435 webkitgtk: type confusion issue leading to arbitrary code execution CVE-2023-32439 For more details about th...
AlmaLinux 9 : webkit2gtk3 (ALSA-2023:4201)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4201 advisory. - A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 16.4, iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3...
RHEL 9 : webkit2gtk3 (RHSA-2023:4201)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4201 advisory. WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: memory corruption issue...
Debian DSA-5449-1 : webkit2gtk - security update
The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5449 advisory. The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2023-32439 An anonymous researcher discovered that processing maliciously crafted...
[SECURITY] [DSA 5449-1] webkit2gtk security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5449-1 [email protected] https://www.debian.org/security/ Alberto Garcia July 07, 2023 https://www.debian.org/security/faq -...
Fedora 37 : webkitgtk (2023-be1ed6a2b4)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-be1ed6a2b4 advisory. Update to 2.40.3: Make memory pressure monitor honor memory.memsw.usageinbytes if exists. Include key modifiers in wheel events. Apply cookie blocking policy...
Fedora 38 : webkitgtk (2023-6f883415a6)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-6f883415a6 advisory. Update to 2.40.3: Make memory pressure monitor honor memory.memsw.usageinbytes if exists. Include key modifiers in wheel events. Apply cookie blocking policy...