VYPR

rpm package

suse/webkit2gtk3&distro=SUSE OpenStack Cloud 8

pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%208

Vulnerabilities (173)

  • CVE-2019-8720HigKEVMar 6, 2023
    affected < 2.28.1-2.50.3fixed 2.28.1-2.50.3

    A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitrary code execution. Improved memory handling addresses the multiple memory corruption issues.

  • CVE-2022-26719HigNov 1, 2022
    affected < 2.36.3-2.99.1fixed 2.36.3-2.99.1

    A memory corruption issue was addressed with improved state management. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4, Safari 15.5. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-26717HigNov 1, 2022
    affected < 2.36.3-2.99.1fixed 2.36.3-2.99.1

    A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.5, watchOS 8.6, iOS 15.5 and iPadOS 15.5, macOS Monterey 12.4, Safari 15.5, iTunes 12.12.4 for Windows. Processing maliciously crafted web content may lead to arbitrary code execu

  • CVE-2022-26716HigNov 1, 2022
    affected < 2.36.3-2.99.1fixed 2.36.3-2.99.1

    A memory corruption issue was addressed with improved state management. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4, Safari 15.5. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-26709HigNov 1, 2022
    affected < 2.36.3-2.99.1fixed 2.36.3-2.99.1

    A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4, Safari 15.5. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-22629HigSep 23, 2022
    affected < 2.36.0-2.96.1fixed 2.36.0-2.96.1

    A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iTunes 12.12.3 for Windows, iOS 15.4 and iPadOS 15.4, tvOS 15.4. Processing maliciously crafted web content may lead to arbitrary code execut

  • CVE-2022-26700HigSep 23, 2022
    affected < 2.36.3-2.99.1fixed 2.36.3-2.99.1

    A memory corruption issue was addressed with improved state management. This issue is fixed in tvOS 15.5, watchOS 8.6, iOS 15.5 and iPadOS 15.5, macOS Monterey 12.4, Safari 15.5. Processing maliciously crafted web content may lead to code execution.

  • CVE-2022-22637HigSep 23, 2022
    affected < 2.36.0-2.96.1fixed 2.36.0-2.96.1

    A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iOS 15.4 and iPadOS 15.4, tvOS 15.4. A malicious website may cause unexpected cross-origin behavior.

  • CVE-2022-22628HigSep 23, 2022
    affected < 2.36.0-2.96.1fixed 2.36.0-2.96.1

    A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iOS 15.4 and iPadOS 15.4, tvOS 15.4. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-22624HigSep 23, 2022
    affected < 2.36.0-2.96.1fixed 2.36.0-2.96.1

    A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.3, iOS 15.4 and iPadOS 15.4, tvOS 15.4, Safari 15.4. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-30293HigMay 6, 2022
    affected < 2.36.3-2.99.1fixed 2.36.3-2.99.1

    In WebKitGTK through 2.36.0 (and WPE WebKit), there is a heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer in WebCore/platform/graphics/texmap/TextureMapperLayer.cpp.

  • CVE-2022-22620HigKEVMar 18, 2022
    affected < 2.34.6-2.88.1fixed 2.34.6-2.88.1

    A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.2.1, iOS 15.3.1 and iPadOS 15.3.1, Safari 15.3 (v. 16612.4.9.1.8 and 15612.4.9.1.8). Processing maliciously crafted web content may lead to arbitrary code execution. App

  • CVE-2022-22594MedMar 18, 2022
    affected < 2.34.5-2.85.3fixed 2.34.5-2.85.3

    A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. A website may be able to track sensitive user information.

  • CVE-2022-22592MedMar 18, 2022
    affected < 2.34.5-2.85.3fixed 2.34.5-2.85.3

    A logic issue was addressed with improved state management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.

  • CVE-2022-22590HigMar 18, 2022
    affected < 2.34.5-2.85.3fixed 2.34.5-2.85.3

    A use after free issue was addressed with improved memory management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2022-22589MedMar 18, 2022
    affected < 2.34.5-2.85.3fixed 2.34.5-2.85.3

    A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing a maliciously crafted mail message may lead to running arbitrary javascript.

  • CVE-2021-45483MedDec 25, 2021
    affected < 2.34.5-2.85.3fixed 2.34.5-2.85.3

    In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.

  • CVE-2021-45482MedDec 25, 2021
    affected < 2.34.5-2.85.3fixed 2.34.5-2.85.3

    In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.

  • CVE-2021-45481MedDec 25, 2021
    affected < 2.34.5-2.85.3fixed 2.34.5-2.85.3

    In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.

  • CVE-2021-30836MedOct 28, 2021
    affected < 2.34.3-2.82.1fixed 2.34.3-2.82.1

    An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing a maliciously crafted audio file may disclose restricted memory.

Page 1 of 9

VYPR — Vulnerability Intelligence