Lucene search
Ubuntu.comUB:CVE-2024-23213HistoryJan 23, 2024 - 12:00 a.m.
CVE-2024-23213
2024-01-2300:00:00
ubuntu.com
ubuntu.com
11
memory handling
watchos
tvos
ios
ipados
macos
safari
code execution
web content
bug
ubuntu
javascriptcore
webkit2gtk
The issue was addressed with improved memory handling. This issue is fixed
in watchOS 10.3, tvOS 17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3,
iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. Processing web content may lead
to arbitrary code execution.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | webkit receives limited support. For details, see https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8 |
| mdeslaur | It is no longer possible to build new webkit2gtk versions on focal and earlier. Marking as ignored. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | qtwebkit-opensource-src | <Â any | UNKNOWN |
| ubuntu | 20.04 | noarch | qtwebkit-opensource-src | <Â any | UNKNOWN |
| ubuntu | 22.04 | noarch | qtwebkit-opensource-src | <Â any | UNKNOWN |
| ubuntu | 23.10 | noarch | qtwebkit-opensource-src | <Â any | UNKNOWN |
| ubuntu | 24.04 | noarch | qtwebkit-opensource-src | <Â any | UNKNOWN |
| ubuntu | 16.04 | noarch | qtwebkit-opensource-src | <Â any | UNKNOWN |
| ubuntu | 18.04 | noarch | qtwebkit-source | <Â any | UNKNOWN |
| ubuntu | 16.04 | noarch | qtwebkit-source | <Â any | UNKNOWN |
| ubuntu | 22.04 | noarch | webkit2gtk | <Â 2.42.5-0ubuntu0.22.04.2 | UNKNOWN |
| ubuntu | 23.10 | noarch | webkit2gtk | <Â 2.42.5-0ubuntu0.23.10.2 | UNKNOWN |
References
launchpad.net/bugs/cve/CVE-2024-23213
nvd.nist.gov/vuln/detail/CVE-2024-23213
security-tracker.debian.org/tracker/CVE-2024-23213
support.apple.com/en-us/HT214055
support.apple.com/en-us/HT214056
support.apple.com/en-us/HT214059
support.apple.com/en-us/HT214060
support.apple.com/en-us/HT214061
support.apple.com/en-us/HT214063
ubuntu.com/security/notices/USN-6631-1
webkitgtk.org/security/WSA-2024-0001.html
www.cve.org/CVERecord?id=CVE-2024-23213
Related
prion
prion
Code injection
2024-01-23 01:15:00
cve
cve
CVE-2024-23213
2024-01-23 01:15:11
cvelist
cvelist
CVE-2024-23213
2024-01-23 00:25:24
debiancve
debiancve
CVE-2024-23213
2024-01-23 01:15:11
redhatcve
redhatcve
CVE-2024-23213
2024-03-18 16:23:54
nessus
nessus
Ubuntu 22.04 LTS / 23.10 : WebKitGTK vulnerabilities (USN-6631-1)
2024-02-12 00:00:00
Debian dsa-5618 : gir1.2-javascriptcoregtk-4.0 - security update
2024-02-09 00:00:00
Fedora 39 : webkitgtk (2024-97faaca23d)
2024-02-08 00:00:00
openvas
openvas
Fedora: Security Advisory for webkitgtk (FEDORA-2024-97faaca23d)
2024-02-09 00:00:00
Ubuntu: Security Advisory (USN-6631-1)
2024-02-13 00:00:00
Fedora: Security Advisory for webkitgtk (FEDORA-2024-ca3f071aea)
2024-02-12 00:00:00
osv
osv
webkit2gtk vulnerabilities
2024-02-12 13:07:31
webkit2gtk - security update
2024-02-08 00:00:00
Important: webkit2gtk3 security update
2024-04-30 00:00:00
debian
debian
[SECURITY] [DSA 5618-1] webkit2gtk security update
2024-02-08 23:24:14
ubuntu
ubuntu
WebKitGTK vulnerabilities
2024-02-12 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: webkitgtk-2.42.5-1.fc39
2024-02-09 01:27:52
[SECURITY] Fedora 38 Update: webkitgtk-2.42.5-1.fc38
2024-02-11 05:40:11
amazon
amazon
Important: webkitgtk4
2024-02-15 03:52:00
apple
apple
About the security content of Safari 17.3
2024-01-22 00:00:00
About the security content of iOS 16.7.5 and iPadOS 16.7.5
2024-01-22 00:00:00
About the security content of tvOS 17.3
2024-01-22 00:00:00
oraclelinux
oraclelinux
webkit2gtk3 security update
2024-05-02 00:00:00
redhat
redhat
(RHSA-2024:2126) Important: webkit2gtk3 security update
2024-04-30 06:14:49
(RHSA-2024:2982) Important: webkit2gtk3 security update
2024-05-22 06:35:16
almalinux
almalinux
Important: webkit2gtk3 security update
2024-04-30 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2024-04-26 09:47:12