Download
| Alert*
oval:org.secpod.oval:def:1701375
A logic issue was addressed with improved state management. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, Safari 14.0.1, tvOS 14.2, iTunes 12.11 for Windows. Processin ... oval:org.secpod.oval:def:507641 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * webkitgtk: use-after-free issue leading to arbitrary code execution * webkitgtk: memory corruption issue leading to arbitrary code execution * webkitgtk: memory corruption issue leading to arbitr ... oval:org.secpod.oval:def:610243 The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-42799 Jihwan Kim and Dohyun Lee discovered that visiting a malicious website may lead to user interface spoofing. CVE-2022-42823 Dohyun Lee discovered that processing maliciously crafted web content may lead to ... oval:org.secpod.oval:def:610242 The following vulnerabilities have been discovered in the WPE WebKit web engine: CVE-2022-42799 Jihwan Kim and Dohyun Lee discovered that visiting a malicious website may lead to user interface spoofing. CVE-2022-42823 Dohyun Lee discovered that processing maliciously crafted web content may lead to ... oval:org.secpod.oval:def:89047942 Security fixes: - CVE-2022-32888: Fixed possible arbitrary code execution via maliciously crafted web content . - CVE-2022-32923: Fixed possible information leak via maliciously crafted web content . - CVE-2022-42799: Fixed user interface spoofing when visiting a malicious website . - CVE-2022-42823 ... oval:org.secpod.oval:def:89047987 Security fixes: - CVE-2022-32888: Fixed possible arbitrary code execution via maliciously crafted web content . - CVE-2022-32923: Fixed possible information leak via maliciously crafted web content . - CVE-2022-42799: Fixed user interface spoofing when visiting a malicious website . - CVE-2022-42823 ... oval:org.secpod.oval:def:124399 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. This package contains WebKit2 based WebKitGTK for GTK 3. oval:org.secpod.oval:def:85004 The host is installed with Apple Safari before 16.1 on Apple Mac OS 12 or Apple Mac OS 11 and is prone to a logic vulnerability. A flaw is present in the application, which fails to handle issues in state management. On successful exploitation, processing maliciously crafted web content may disclose ... oval:org.secpod.oval:def:707814 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:86610 The following vulnerabilities have been discovered in the WPE WebKit web engine: CVE-2022-42799 Jihwan Kim and Dohyun Lee discovered that visiting a malicious website may lead to user interface spoofing. CVE-2022-42823 Dohyun Lee discovered that processing maliciously crafted web content may lead to ... oval:org.secpod.oval:def:85001 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code or disclose sensitive informat ... oval:org.secpod.oval:def:86530 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:3301369 SUSE Security Update: Security update for webkit2gtk3 oval:org.secpod.oval:def:3300676 SUSE Security Update: Security update for webkit2gtk3 oval:org.secpod.oval:def:2600201 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. oval:org.secpod.oval:def:124427 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. This package contains WebKit2 based WebKitGTK for GTK 3. oval:org.secpod.oval:def:89047979 Security fixes: - CVE-2022-32888: Fixed possible arbitrary code execution via maliciously crafted web content . - CVE-2022-32923: Fixed possible information leak via maliciously crafted web content . - CVE-2022-42799: Fixed user interface spoofing when visiting a malicious website . - CVE-2022-42823 ... oval:org.secpod.oval:def:1506677 [2.38.5-1] - Update to 2.38.5 Related: #2127467 [2.38.4-1] - Update to 2.38.4 Related: #2127467 [2.38.3-1] - Update to 2.38.3 Related: #2127467 [2.38.2-1] - Update to 2.38.2 Related: #2127467 [2.38.1-2] - Fix use with aarch64 64 KiB page size Related: #2127467 [2.38.1-1] - Update to 2.38.1 Resolves: ... oval:org.secpod.oval:def:1506792 [2.38.5-1] - Update to 2.38.5 Related: #2127468 [2.38.4-1] - Update to 2.38.4 Related: #2127468 [2.38.3-1] - Update to 2.38.3 Related: #2127468 [2.38.2-1] - Update to 2.38.2 Related: #2127468 [2.38.1-2] - Fix crashes on aarch64 Enable WPE renderer Related: #2127468 [2.38.1-1] - Update to 2.38.1 Rela ... oval:org.secpod.oval:def:507738 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * webkitgtk: use-after-free issue leading to arbitrary code execution * webkitgtk: memory corruption issue leading to arbitrary code execution * webkitgtk: memory corruption issue leading to arbitr ... oval:org.secpod.oval:def:88427 The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-42799 Jihwan Kim and Dohyun Lee discovered that visiting a malicious website may lead to user interface spoofing. CVE-2022-42823 Dohyun Lee discovered that processing maliciously crafted web content may lead to ... oval:org.secpod.oval:def:89048002 Security fixes: - CVE-2022-32888: Fixed possible arbitrary code execution via maliciously crafted web content . - CVE-2022-32923: Fixed possible information leak via maliciously crafted web content . - CVE-2022-42799: Fixed user interface spoofing when visiting a malicious website . - CVE-2022-42823 ... oval:org.secpod.oval:def:2501076 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. oval:org.secpod.oval:def:85969 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code, cause denial of service or di ... |