WebKitGTK+ Memory Corruption / Code Execution Vulnerability

🗓️ 09 May 2018 00:00:00Reported by WebKitGTK+ TeamType

zdt🔗 0day.today👁 61 Views

WebKitGTK+ Memory Corruption / Code Execution Vulnerability WSA-2018-0004. Multiple memory corruption issues addresse

Reporter	Title	Published	Views	Family All 139
0day.today	WebKit - WebAssembly Parsing Does not Correctly Check Section Order Vulnerability	9 Apr 201800:00	–	zdt
0day.today	WebKit WebCore::jsElementScrollHeightGette Use-After-Free Exploit	2 May 201800:00	–	zdt
GithubExploit	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Safari	19 Apr 201808:33	–	githubexploit
GithubExploit	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Safari	19 Apr 201808:33	–	githubexploit
Tenable Nessus	Apple Safari < 11.1 Multiple Vulnerabilities	8 Apr 201900:00	–	nessus
Tenable Nessus	Apple iOS < 11.3 Multiple Vulnerabilities	17 Apr 201900:00	–	nessus
Tenable Nessus	Apple iOS < 11.3.1 Multiple Vulnerabilities	17 Apr 201900:00	–	nessus
Tenable Nessus	Apple iOS < 11.4 Multiple Vulnerabilities (EFAIL)	17 Apr 201900:00	–	nessus
Tenable Nessus	Apple TV < 11.3 Multiple Vulnerabilities	16 Apr 201800:00	–	nessus
Tenable Nessus	Apple TV < 11.4 Multiple Vulnerabilities	5 Jun 201800:00	–	nessus

------------------------------------------------------------------------
WebKitGTK+ Security Advisory                               WSA-2018-0004
------------------------------------------------------------------------

Date reported      : May 07, 2018
Advisory ID        : WSA-2018-0004
Advisory URL       : https://webkitgtk.org/security/WSA-2018-0004.html
CVE identifiers    : CVE-2018-4121, CVE-2018-4200, CVE-2018-4204.

Several vulnerabilities were discovered in WebKitGTK+.

CVE-2018-4121
    Versions affected: WebKitGTK+ before 2.20.0.
    Credit to Natalie Silvanovich of Google Project Zero.
    Impact: Processing maliciously crafted web content may lead to
    arbitrary code execution. Description: Multiple memory corruption
    issues were addressed with improved memory handling.

CVE-2018-4200
    Versions affected: WebKitGTK+ before 2.20.2.
    Credit to Ivan Fratric of Google Project Zero.
    Impact: Processing maliciously crafted web content may lead to
    arbitrary code execution. Description: A memory corruption issue was
    addressed with improved state management.

CVE-2018-4204
    Versions affected: WebKitGTK+ before 2.20.1.
    Credit to Richard Zhu (fluorescence) working with Trend Micro's Zero
    Day Initiative, found by OSS-Fuzz.
    Impact: Processing maliciously crafted web content may lead to
    arbitrary code execution. Description: A memory corruption issue was
    addressed with improved memory handling.


We recommend updating to the last stable version of WebKitGTK+. It is
the best way of ensuring that you are running a safe version of
WebKitGTK+. Please check our website for information about the last
stable releases.

Further information about WebKitGTK+ Security Advisories can be found
at: https://webkitgtk.org/security.html

The WebKitGTK+ team,
May 07, 2018

#  0day.today [2018-05-09]  #

09 May 2018 00:00Current

8.4High risk

Vulners AI Score8.4

EPSS0.40022