rpm package
opensuse/webkit2gtk3&distro=openSUSE Leap 15.4
pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.4
Vulnerabilities (83)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-30293 | — | < 2.36.3-150400.4.3.1 | 2.36.3-150400.4.3.1 | May 6, 2022 | In WebKitGTK through 2.36.0 (and WPE WebKit), there is a heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer in WebCore/platform/graphics/texmap/TextureMapperLayer.cpp. | ||
| CVE-2022-22594 | — | < 2.36.0-150200.32.1 | 2.36.0-150200.32.1 | Mar 18, 2022 | A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. A website may be able to track sensitive user information. | ||
| CVE-2022-0108 | — | < 2.38.6-150400.4.39.1 | 2.38.6-150400.4.39.1 | Feb 11, 2022 | Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. |
- CVE-2022-30293May 6, 2022affected < 2.36.3-150400.4.3.1fixed 2.36.3-150400.4.3.1
In WebKitGTK through 2.36.0 (and WPE WebKit), there is a heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer in WebCore/platform/graphics/texmap/TextureMapperLayer.cpp.
- CVE-2022-22594Mar 18, 2022affected < 2.36.0-150200.32.1fixed 2.36.0-150200.32.1
A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. A website may be able to track sensitive user information.
- CVE-2022-0108Feb 11, 2022affected < 2.38.6-150400.4.39.1fixed 2.38.6-150400.4.39.1
Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Page 5 of 5