89 matches found
CVE-2022-22287
Abitrary file access vulnerability in Samsung Email prior to 6.1.60.16 allows attacker to read isolated data in sandbox...
RLSA-2024:10481 Important: webkit2gtk3 security update
WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: data isolation bypass vulnerability CVE-2024-44309 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refe...
webkit2gtk3 security update
An update is available for webkit2gtk3. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list WebKitGTK is the port of the portable web rendering engine WebKit to the...
RockyLinux 8 : webkit2gtk3 (RLSA-2024:10481)
The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:10481 advisory. webkitgtk: data isolation bypass vulnerability CVE-2024-44309 Tenable has extracted the preceding description block directly from the RockyLinux security advisor...
SUSE SLES12: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2024:4293-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4293-1 advisory. - CVE-2024-44308: Fixed processing maliciously crafted web content that may lead to arbitrary code execution bsc1233631 - CVE-2024-44309: Fixed...
SUSE SLED15: WebKitGTK-4.0-lang / WebKitGTK-4.1-lang / WebKitGTK-6.0-lang / etc (SUSE-SU-2024:4292-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4292-1 advisory. - CVE-2024-44308: Fixed processing maliciously crafted web content that may lead to arbitrary co...
SUSE SLED15: WebKitGTK-4.0-lang / WebKitGTK-4.1-lang / WebKitGTK-6.0-lang / etc (SUSE-SU-2024:4117-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4117-1 advisory. Update to version 2.46.3 bsc1232747, including fixes for: - CVE-2024-44308: Fixed arbitrary code...
SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2024:4167-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4167-1 advisory. Update to version 2.46.3 bsc1232747, including fixes for: - CVE-2024-44308: Fixed arbitrary code execution by not allocating DFG...
SUSE: Security Advisory (SUSE-SU-2024:4293-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:4293-1 Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: - CVE-2024-44308: Fixed processing maliciously crafted web content that may lead to arbitrary code execution bsc1233631 - CVE-2024-44309: Fixed data isolation bypass vulnerability bsc1233632...
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: CVE-2024-44308: Fixed processing maliciously crafted web content that may lead to arbitrary code execution bsc1233631 CVE-2024-44309: Fixed data isolation bypass vulnerability bsc1233632 Patch Instructions: To install this SUSE update use th...
SUSE-SU-2024:4292-1 Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: - CVE-2024-44308: Fixed processing maliciously crafted web content that may lead to arbitrary code execution bsc1233631 - CVE-2024-44309: Fixed data isolation bypass vulnerability bsc1233632...
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: Update to version 2.46.3 bsc1232747, including fixes for: CVE-2024-44308: Fixed arbitrary code execution by not allocating DFG register after a slow path bsc1233631. CVE-2024-44309: Fixed a data isolation bypass vulnerability bsc1233632...
SUSE-SU-2024:4167-1 Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: Update to version 2.46.3 bsc1232747, including fixes for: - CVE-2024-44308: Fixed arbitrary code execution by not allocating DFG register after a slow path bsc1233631. - CVE-2024-44309: Fixed a data isolation bypass vulnerability bsc1233632....
SUSE-SU-2024:4117-1 Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: Update to version 2.46.3 bsc1232747, including fixes for: - CVE-2024-44308: Fixed arbitrary code execution by not allocating DFG register after a slow path bsc1233631. - CVE-2024-44309: Fixed a data isolation bypass vulnerability bsc1233632....
AlmaLinux 8 : webkit2gtk3 (ALSA-2024:10481)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:10481 advisory. webkitgtk: data isolation bypass vulnerability CVE-2024-44309 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory...
AlmaLinux 9 : webkit2gtk3 (ALSA-2024:10472)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:10472 advisory. webkitgtk: data isolation bypass vulnerability CVE-2024-44309 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory...
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: Update to version 2.46.3 bsc1232747, including fixes for: CVE-2024-44308: Fixed arbitrary code execution by not allocating DFG register after a slow path bsc1233631. CVE-2024-44309: Fixed a data isolation bypass vulnerability bsc1233632...
webkitgtk: data isolation bypass vulnerability
A data isolation bypass vulnerability was discovered in WebKitGTK. Processing maliciously crafted web content could enable a cross-site scripting XSS attack...
Important: Red Hat Security Advisory: webkit2gtk3 security update
An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update ...