The following vulnerabilities have been discovered in the WebKitGTK
web engine:
CVE-2023-39928
Marcin Noga discovered that a specially crafted web page can abuse
a vulnerability in the MediaRecorder API to cause memory
corruption and potentially arbitrary code execution
CVE-2023-41074
Junsung Lee and Me Li discovered that processi ...
The webkit2gtk update released as 5527-1 introduced a regression that
is causing programs such as yelp, liferea or gnucash to stop working
in certain cases
For the oldstable distribution (bullseye), this problem has been fixed
in version 2421-1~deb11u2
We recommend that you upgrade your webkit2gtk packages
For the detailed security status of w ...
Impact: Visiting a website that frames malicious content may lead to UI spoofing
Description: The issue was addressed with improved UI handling (CVE-2022-32919)
A website may be able to track the websites a user visited in Safari private browsing mode (CVE-2022-32933)
A spoofing issue existed in the handling of URLs This issue was addressed wit ...
DescriptionThe MITRE CVE dictionary describes this issue as: The issue was addressed with improved checks This issue is fixed in tvOS 17, Safari 17, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14 Processing web content may lead to arbitrary code execution ...
About Apple security updates
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available Recent releases are listed on the Apple security releases page
Apple security documents reference vulnerabilities by CVE-ID whe ...
About Apple security updates
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available Recent releases are listed on the Apple security releases page
Apple security documents reference vulnerabilities by CVE-ID whe ...
About Apple security updates
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available Recent releases are listed on the Apple security releases page
Apple security documents reference vulnerabilities by CVE-ID whe ...
About Apple security updates
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available Recent releases are listed on the Apple security releases page
Apple security documents reference vulnerabilities by CVE-ID whe ...
About Apple security updates
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available Recent releases are listed on the Apple security releases page
Apple security documents reference vulnerabilities by CVE-ID whe ...
Vulmon