Lucene search
Ubuntu.comUB:CVE-2024-23284HistoryMar 08, 2024 - 12:00 a.m.
CVE-2024-23284
2024-03-0800:00:00
ubuntu.com
ubuntu.com
8
logic issue
webkit
content security policy
ios
macos
tvos
ipados
watchos
visionos
state management
maliciously crafted web content
A logic issue was addressed with improved state management. This issue is
fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS
17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing
maliciously crafted web content may prevent Content Security Policy from
being enforced.
Notes
| Author | Note |
|---|---|
| jdstrand | webkit receives limited support. For details, see https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8 |
| mdeslaur | It is no longer possible to build new webkit2gtk versions on focal and earlier. Marking as ignored. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
| ubuntu | 18.04 | noarch | qtwebkit-source | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | qtwebkit-source | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | webkit2gtk | < 2.44.0-0ubuntu0.22.04.1 | UNKNOWN |
| ubuntu | 23.10 | noarch | webkit2gtk | < 2.44.0-0ubuntu0.23.10.1 | UNKNOWN |
Related
osv
osv
CVE-2024-23284
2024-03-08 02:15:49
webkit2gtk - security update
2024-05-09 00:00:00
webkit2gtk vulnerabilities
2024-04-15 16:29:45
debiancve
debiancve
CVE-2024-23284
2024-03-08 02:15:49
cve
cve
CVE-2024-23284
2024-03-08 02:15:49
prion
prion
Code injection
2024-03-08 02:15:00
redhatcve
redhatcve
CVE-2024-23284
2024-03-19 13:32:28
cvelist
cvelist
CVE-2024-23284
2024-03-08 01:35:43
nvd
nvd
CVE-2024-23284
2024-03-08 02:15:49
amazon
amazon
Medium: webkitgtk4
2024-04-11 01:07:00
nessus
nessus
Fedora 38 : webkitgtk (2024-f1ae7b7ac5)
2024-04-01 00:00:00
Fedora 40 : webkitgtk (2024-7ee03010c5)
2024-04-29 00:00:00
Fedora 39 : webkitgtk (2024-ee43b83290)
2024-03-22 00:00:00
openvas
openvas
Fedora: Security Advisory for webkitgtk (FEDORA-2024-f1ae7b7ac5)
2024-04-03 00:00:00
Fedora: Security Advisory for webkitgtk (FEDORA-2024-7ee03010c5)
2024-03-26 00:00:00
Fedora: Security Advisory for webkitgtk (FEDORA-2024-ee43b83290)
2024-03-25 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: webkitgtk-2.44.0-2.fc40
2024-03-26 00:15:47
[SECURITY] Fedora 38 Update: webkitgtk-2.44.0-2.fc38
2024-04-02 01:49:35
[SECURITY] Fedora 39 Update: webkitgtk-2.44.0-2.fc39
2024-03-22 01:16:32
apple
apple
About the security content of Safari 17.4
2024-03-07 00:00:00
About the security content of visionOS 1.1
2024-03-07 00:00:00
About the security content of iOS 16.7.6 and iPadOS 16.7.6
2024-03-05 00:00:00
debian
debian
[SECURITY] [DSA 5684-1] webkit2gtk security update
2024-05-09 07:57:13
ubuntu
ubuntu
WebKitGTK vulnerabilities
2024-04-15 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2024-04-26 09:47:12