VYPR

rpm package

suse/webkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS

Vulnerabilities (58)

  • CVE-2023-25358HigMar 2, 2023
    affected < 2.38.6-150200.72.1fixed 2.38.6-150200.72.1

    A use-after-free vulnerability in WebCore::RenderLayer::addChild in WebKitGTK before 2.36.8 allows attackers to execute code remotely.

  • CVE-2023-23529HigKEVFeb 27, 2023
    affected < 2.38.5-150200.66.1fixed 2.38.5-150200.66.1

    A type confusion issue was addressed with improved checks. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, iOS 16.3.1 and iPadOS 16.3.1, macOS Ventura 13.2.1, Safari 16.3. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a re

  • CVE-2023-23518HigFeb 27, 2023
    affected < 2.38.5-150200.66.1fixed 2.38.5-150200.66.1

    The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, watchOS 9.3, macOS Big Sur 11.7.3, Safari 16.3, tvOS 16.3, iOS 16.3 and iPadOS 16.3. Processing maliciously crafted web content may lead to arbitrary code exec

  • CVE-2023-23517HigFeb 27, 2023
    affected < 2.38.5-150200.66.1fixed 2.38.5-150200.66.1

    The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, watchOS 9.3, macOS Big Sur 11.7.3, Safari 16.3, tvOS 16.3, iOS 16.3 and iPadOS 16.3. Processing maliciously crafted web content may lead to arbitrary code exec

  • CVE-2022-46705MedFeb 27, 2023
    affected < 2.42.2-150200.91.1fixed 2.42.2-150200.91.1

    A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, Safari 16.2. Visiting a malicious website may lead to address bar spoofing.

  • CVE-2022-42826HigFeb 27, 2023
    affected < 2.38.5-150200.66.1fixed 2.38.5-150200.66.1

    A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13, iOS 16.1 and iPadOS 16, Safari 16.1. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-46700HigDec 15, 2022
    affected < 2.38.3-150200.57.1fixed 2.38.3-150200.57.1

    A memory corruption issue was addressed with improved input validation. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code ex

  • CVE-2022-46699HigDec 15, 2022
    affected < 2.38.3-150200.57.1fixed 2.38.3-150200.57.1

    A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-46698MedDec 15, 2022
    affected < 2.38.3-150200.57.1fixed 2.38.3-150200.57.1

    A logic issue was addressed with improved checks. This issue is fixed in Safari 16.2, tvOS 16.2, iCloud for Windows 14.1, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may disclose sensitive user information.

  • CVE-2022-46692MedDec 15, 2022
    affected < 2.38.3-150200.57.1fixed 2.38.3-150200.57.1

    A logic issue was addressed with improved state management. This issue is fixed in Safari 16.2, tvOS 16.2, iCloud for Windows 14.1, iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may bypass Same

  • CVE-2022-46691HigDec 15, 2022
    affected < 2.38.3-150200.57.1fixed 2.38.3-150200.57.1

    A memory consumption issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code ex

  • CVE-2022-42867HigDec 15, 2022
    affected < 2.38.3-150200.57.1fixed 2.38.3-150200.57.1

    A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-42863HigDec 15, 2022
    affected < 2.38.3-150200.57.1fixed 2.38.3-150200.57.1

    A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-42856HigKEVDec 15, 2022
    affected < 2.38.3-150200.57.1fixed 2.38.3-150200.57.1

    A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.1.2. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a rep

  • CVE-2022-42852MedDec 15, 2022
    affected < 2.38.3-150200.57.1fixed 2.38.3-150200.57.1

    The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may result in the disclosure of process memory

  • CVE-2022-32912HigSep 20, 2022
    affected < 2.38.6-150200.72.1fixed 2.38.6-150200.72.1

    An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-32886HigSep 20, 2022
    affected < 2.38.6-150200.72.1fixed 2.38.6-150200.72.1

    A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-0108MedFeb 12, 2022
    affected < 2.38.6-150200.72.1fixed 2.38.6-150200.72.1

    Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Page 3 of 3