Download
| Alert*
oval:org.secpod.oval:def:89003460
This update for webkit2gtk3 to version 2.24.1 fixes the following issues: Security issues fixed: - CVE-2019-6201, CVE-2019-6251, CVE-2019-7285, CVE-2019-7292, CVE-2019-8503, CVE-2019-8506, CVE-2019-8515, CVE-2019-8524, CVE-2019-8535, CVE-2019-8536, CVE-2019-8544, CVE-2019-8551, CVE-2019-8558, CVE-20 ... oval:org.secpod.oval:def:89050862 This update for webkit2gtk3 to version 2.24.1 fixes the following issues: Security issues fixed: - CVE-2019-6201, CVE-2019-6251, CVE-2019-7285, CVE-2019-7292, CVE-2019-8503, CVE-2019-8506, CVE-2019-8515, CVE-2019-8518, CVE-2019-8523, CVE-2019-8524, CVE-2019-8535, CVE-2019-8536, CVE-2019-8544, CVE-20 ... oval:org.secpod.oval:def:53597 The host is installed with Apple Safari before 12.1 and is prone to a cross-origin vulnerability. A flaw is present in the application, which fails to properly handle an issue in fetch API. Successful exploitation of a maliciously crafted web content may disclose sensitive user information. oval:org.secpod.oval:def:53610 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an information disclosure vulnerability. A flaw is present in the applications, which fail to properly handle issues in fetch api. Successful exploitation could allow attackers to disclose sensitive inf ... oval:org.secpod.oval:def:53626 The host is missing a security update according to Apple advisory, APPLE-SA-2019-3-25-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:53604 The host is missing a security update according to Apple advisory, APPLE-SA-2019-3-25-4. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious website. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:53627 The host is missing a security update according to Apple advisory, APPLE-SA-2019-3-25-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:2005059 A cross-origin issue existed with the fetch API. This was addressed with improved input validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may disclose sensitive user information. |