Lucene search
Ubuntu.comUB:CVE-2023-42890HistoryDec 12, 2023 - 12:00 a.m.
CVE-2023-42890
2023-12-1200:00:00
ubuntu.com
ubuntu.com
14
safari 17.2
macos sonoma 14.2
watchos 10.2
ios 17.2
ipados 17.2
tvos 17.2
memory handling
arbitrary code execution
web content
The issue was addressed with improved memory handling. This issue is fixed
in Safari 17.2, macOS Sonoma 14.2, watchOS 10.2, iOS 17.2 and iPadOS 17.2,
tvOS 17.2. Processing web content may lead to arbitrary code execution.
Notes
| Author | Note |
|---|---|
| jdstrand | webkit receives limited support. For details, see https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8 |
| mdeslaur | It is no longer possible to build new webkit2gtk versions on focal and earlier. Marking as ignored. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 18.04 | noarch | qtwebkit-source | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | qtwebkit-source | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | webkit2gtk | < 2.42.1-0ubuntu0.22.04.1 | UNKNOWN |
| ubuntu | 23.04 | noarch | webkit2gtk | < 2.42.1-0ubuntu0.23.04.1 | UNKNOWN |
Related
cvelist
cvelist
CVE-2023-42890
2023-12-12 00:27:26
cve
cve
CVE-2023-42890
2023-12-12 01:15:11
debiancve
debiancve
CVE-2023-42890
2023-12-12 01:15:11
prion
prion
Code injection
2023-12-12 01:15:00
redhatcve
redhatcve
CVE-2023-42890
2023-12-13 11:31:02
nessus
nessus
Amazon Linux 2 : webkitgtk4 (ALAS-2024-2425)
2024-01-23 00:00:00
SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2023:4978-1)
2023-12-28 00:00:00
SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2024:0003-1)
2024-01-03 00:00:00
amazon
amazon
Important: webkitgtk4
2024-01-19 01:51:00
openvas
openvas
Apple Safari Security Update (HT214039)
2023-12-14 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4978-1)
2023-12-28 00:00:00
openSUSE: Security Advisory for webkit2gtk3 (SUSE-SU-2024:0004-1)
2024-03-04 00:00:00
apple
apple
About the security content of Safari 17.2
2023-12-11 00:00:00
About the security content of tvOS 17.2
2023-12-11 00:00:00
About the security content of watchOS 10.2
2023-12-11 00:00:00
thn
thn
osv
osv
webkit2gtk - security update
2023-10-12 00:00:00
Important: webkit2gtk3 security update
2024-04-30 00:00:00
Important: webkit2gtk3 security update
2024-05-22 00:00:00
almalinux
almalinux
Important: webkit2gtk3 security update
2024-05-22 00:00:00
Important: webkit2gtk3 security update
2024-04-30 00:00:00
oraclelinux
oraclelinux
webkit2gtk3 security update
2024-05-02 00:00:00
webkit2gtk3 security update
2024-05-23 00:00:00
redhat
redhat
(RHSA-2024:2126) Important: webkit2gtk3 security update
2024-04-30 06:14:49
(RHSA-2024:2982) Important: webkit2gtk3 security update
2024-05-22 06:35:16
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2024-01-31 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2024-04-26 09:47:12