Unrated severityNVD Advisory· Published Jul 8, 2021· Updated Aug 3, 2024
CVE-2021-21806
CVE-2021-21806
Description
An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability.
Affected products
89- osv-coords88 versionspkg:rpm/almalinux/accountsservicepkg:rpm/almalinux/accountsservice-develpkg:rpm/almalinux/accountsservice-libspkg:rpm/almalinux/gdmpkg:rpm/almalinux/gnome-autoarpkg:rpm/almalinux/gnome-calculatorpkg:rpm/almalinux/gnome-classic-sessionpkg:rpm/almalinux/gnome-control-centerpkg:rpm/almalinux/gnome-control-center-filesystempkg:rpm/almalinux/gnome-online-accountspkg:rpm/almalinux/gnome-online-accounts-develpkg:rpm/almalinux/gnome-sessionpkg:rpm/almalinux/gnome-session-kiosk-sessionpkg:rpm/almalinux/gnome-session-wayland-sessionpkg:rpm/almalinux/gnome-session-xsessionpkg:rpm/almalinux/gnome-settings-daemonpkg:rpm/almalinux/gnome-shellpkg:rpm/almalinux/gnome-shell-extension-apps-menupkg:rpm/almalinux/gnome-shell-extension-auto-move-windowspkg:rpm/almalinux/gnome-shell-extension-commonpkg:rpm/almalinux/gnome-shell-extension-dash-to-dockpkg:rpm/almalinux/gnome-shell-extension-desktop-iconspkg:rpm/almalinux/gnome-shell-extension-disable-screenshieldpkg:rpm/almalinux/gnome-shell-extension-drive-menupkg:rpm/almalinux/gnome-shell-extension-gesture-inhibitorpkg:rpm/almalinux/gnome-shell-extension-horizontal-workspacespkg:rpm/almalinux/gnome-shell-extension-launch-new-instancepkg:rpm/almalinux/gnome-shell-extension-native-window-placementpkg:rpm/almalinux/gnome-shell-extension-no-hot-cornerpkg:rpm/almalinux/gnome-shell-extension-panel-favoritespkg:rpm/almalinux/gnome-shell-extension-places-menupkg:rpm/almalinux/gnome-shell-extension-screenshot-window-sizerpkg:rpm/almalinux/gnome-shell-extension-systemMonitorpkg:rpm/almalinux/gnome-shell-extension-top-iconspkg:rpm/almalinux/gnome-shell-extension-updates-dialogpkg:rpm/almalinux/gnome-shell-extension-user-themepkg:rpm/almalinux/gnome-shell-extension-window-grouperpkg:rpm/almalinux/gnome-shell-extension-window-listpkg:rpm/almalinux/gnome-shell-extension-windowsNavigatorpkg:rpm/almalinux/gnome-shell-extension-workspace-indicatorpkg:rpm/almalinux/gnome-softwarepkg:rpm/almalinux/gnome-software-develpkg:rpm/almalinux/gsettings-desktop-schemaspkg:rpm/almalinux/gsettings-desktop-schemas-develpkg:rpm/almalinux/gtk3pkg:rpm/almalinux/gtk3-develpkg:rpm/almalinux/gtk3-immodule-ximpkg:rpm/almalinux/gtk-update-icon-cachepkg:rpm/almalinux/LibRawpkg:rpm/almalinux/LibRaw-develpkg:rpm/almalinux/mutterpkg:rpm/almalinux/mutter-develpkg:rpm/almalinux/vinopkg:rpm/almalinux/webkit2gtk3pkg:rpm/almalinux/webkit2gtk3-develpkg:rpm/almalinux/webkit2gtk3-jscpkg:rpm/almalinux/webkit2gtk3-jsc-develpkg:rpm/opensuse/gtk3&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/webkit2gtk3&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 0.6.55-2.el8+ 87 more
- (no CPE)range: < 0.6.55-2.el8
- (no CPE)range: < 0.6.55-2.el8
- (no CPE)range: < 0.6.55-2.el8
- (no CPE)range: < 1:40.0-15.el8
- (no CPE)range: < 0.2.3-2.el8
- (no CPE)range: < 3.28.2-2.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.28.2-28.el8
- (no CPE)range: < 3.28.2-28.el8
- (no CPE)range: < 3.28.2-3.el8
- (no CPE)range: < 3.28.2-3.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.32.0-16.el8.alma
- (no CPE)range: < 3.32.2-40.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.36.1-10.el8
- (no CPE)range: < 3.36.1-10.el8
- (no CPE)range: < 3.32.0-6.el8
- (no CPE)range: < 3.32.0-6.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 0.19.5-3.el8
- (no CPE)range: < 0.19.5-3.el8
- (no CPE)range: < 3.32.2-60.el8
- (no CPE)range: < 3.32.2-60.el8
- (no CPE)range: < 3.22.0-11.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.4-1.1
- (no CPE)range: < 2.32.4-lp152.2.19.1
- (no CPE)range: < 2.32.4-12.3
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-12.3
- (no CPE)range: < 2.32.4-12.3
- (no CPE)range: < 2.32.4-12.3
- (no CPE)range: < 2.32.4-12.3
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-3.82.1
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- (no CPE)range: < 2.32.4-2.71.2
- Range: Webkit WebKitGTK 2.30.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.openwall.com/lists/oss-security/2021/07/23/1mitremailing-listx_refsource_MLIST
- talosintelligence.com/vulnerability_reports/TALOS-2020-1214mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.