High severity8.8NVD Advisory· Published Dec 12, 2023· Updated Jun 17, 2026
CVE-2023-42890
CVE-2023-42890
Description
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, macOS Sonoma 14.2, watchOS 10.2, iOS 17.2 and iPadOS 17.2, tvOS 17.2. Processing web content may lead to arbitrary code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
55before 14.2+ 1 more
- (no CPE)range: before 14.2
- (no CPE)range: unspecified
before 17.2+ 1 more
- (no CPE)range: before 17.2
- (no CPE)range: unspecified
- Range: before 17.2
- osv-coords47 versionspkg:rpm/almalinux/webkit2gtk3pkg:rpm/almalinux/webkit2gtk3-develpkg:rpm/almalinux/webkit2gtk3-jscpkg:rpm/almalinux/webkit2gtk3-jsc-develpkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP4pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Manager%20Server%204.3pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP4pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4
< 2.42.5-1.el9+ 46 more
- (no CPE)range: < 2.42.5-1.el9
- (no CPE)range: < 2.42.5-1.el9
- (no CPE)range: < 2.42.5-1.el9
- (no CPE)range: < 2.42.5-1.el9
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150200.97.3
- (no CPE)range: < 2.42.4-150000.3.163.2
- (no CPE)range: < 2.42.4-150200.97.3
- (no CPE)range: < 2.42.4-150200.97.3
- (no CPE)range: < 2.42.4-150200.97.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-2.164.1
- (no CPE)range: < 2.42.4-150000.3.163.2
- (no CPE)range: < 2.42.4-150200.97.3
- (no CPE)range: < 2.42.4-150200.97.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-2.164.1
- (no CPE)range: < 2.42.4-150000.3.163.2
- (no CPE)range: < 2.42.4-150200.97.3
- (no CPE)range: < 2.42.4-150200.97.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-2.164.1
- (no CPE)range: < 2.42.4-2.164.1
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- (no CPE)range: < 2.42.4-150400.4.70.3
- Range: unspecified
- Range: unspecified
- Range: unspecified
Patches
Vulnerability mechanics
References
13- seclists.org/fulldisclosure/2023/Dec/12nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2023/Dec/13nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2023/Dec/6nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2023/Dec/7nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2023/Dec/9nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2023/12/18/1nvdMailing ListThird Party Advisory
- security.gentoo.org/glsa/202401-33nvdThird Party Advisory
- support.apple.com/en-us/HT214035nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT214036nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT214039nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT214040nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT214041nvdRelease NotesVendor Advisory
- support.apple.com/kb/HT214039nvd
News mentions
0No linked articles in our index yet.