Download
| Alert*
|
oval:org.secpod.oval:def:77856
The host is installed with Apple iTunes before 12.10.9 and is prone to use after free vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory management. On successful exploitation, processing maliciously crafted web content may lead to arbitrary code exe ... oval:org.secpod.oval:def:89002976 This update for webkit2gtk3 fixes the following issues: -webkit2gtk3 was updated to version 2.30.3 : - CVE-2021-13543: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-13584: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9948: ... oval:org.secpod.oval:def:77849 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to cause unspecified impact. oval:org.secpod.oval:def:67881 The following vulnerabilities have been discovered in the libwebkit2gtk-4.0-dev web engine: CVE-2020-9948 Brendan Draper discovered that processing maliciously crafted web content may lead to arbitrary code execution. CVE-2020-9951 Marcin Noga discovered that processing maliciously crafted web conte ... oval:org.secpod.oval:def:70282 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:89050478 This update for webkit2gtk3 fixes the following issues: -webkit2gtk3 was updated to version 2.30.3 : - CVE-2021-13543: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-13584: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9948: ... oval:org.secpod.oval:def:605320 The following vulnerabilities have been discovered in the libwebkit2gtk-4.0-dev web engine: CVE-2020-9948 Brendan Draper discovered that processing maliciously crafted web content may lead to arbitrary code execution. CVE-2020-9951 Marcin Noga discovered that processing maliciously crafted web conte ... oval:org.secpod.oval:def:73580 GNOME is the default desktop environment of Red Hat Enterprise Linux. The following packages have been upgraded to a later upstream version: accountsservice , webkit2gtk3 . Security Fix: * webkitgtk: type confusion may lead to arbitrary code execution * webkitgtk: use-after-free may lead to arbitr ... oval:org.secpod.oval:def:1504912 accountsservice [0.6.55-1] - Rebase to 0.6.55 Resolves: #1846376 atkmm [2.24.2-7] - Rebuild for annobin fixes - Resolves: rhbz#1703969 cairomm [1.12.0-8] - Rebuild for the annobin fixes - Resolves: rhbz#1703971 chrome-gnome-shell [10.1-7] - Disable updates support Resolves: #1802105 dleyna-core [0.6 ... oval:org.secpod.oval:def:705779 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:65633 The host is missing a security update according to Apple advisory, APPLE-SA-2020-09-16-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious web content. Successful exploitation could allow attackers to execute arbitrar ... oval:org.secpod.oval:def:65635 The host is installed with Safari before 14.0 on Apple Mac OS X 10.14.6 or 10.15 and is prone to a use after free vulnerability. A flaw is present in the application, which fails to properly handle memory management issues. Successful exploitation could allow attackers to execute arbitrary code via ... oval:org.secpod.oval:def:91661 Oracle Solaris 11 - ( CVE-2018-14550 ) oval:org.secpod.oval:def:506037 GNOME is the default desktop environment of Red Hat Enterprise Linux. The following packages have been upgraded to a later upstream version: accountsservice , webkit2gtk3 . Security Fix: * webkitgtk: type confusion may lead to arbitrary code execution * webkitgtk: use-after-free may lead to arbitr ... oval:org.secpod.oval:def:2500304 GNOME is the default desktop environment of AlmaLinux. oval:org.secpod.oval:def:89045920 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 . - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripti ... oval:org.secpod.oval:def:89047402 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 . - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripti ... oval:org.secpod.oval:def:89045928 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 . - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripti ... oval:org.secpod.oval:def:89045909 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 . - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripti ... oval:org.secpod.oval:def:3300361 SUSE Security Update: Security update for webkit2gtk3 oval:org.secpod.oval:def:89045092 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.1: + Improve handling of Media Capture devices. + Improve WebAudio playback. + Improve video orientation handling. + Improve seeking support for MSE playback. + Improve flush support in EME decryptors. + Fix HTTP status ... |
