Download
| Alert*
oval:org.secpod.oval:def:88889
The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code, cause denial of service or di ... oval:org.secpod.oval:def:1701375 A logic issue was addressed with improved state management. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, Safari 14.0.1, tvOS 14.2, iTunes 12.11 for Windows. Processin ... oval:org.secpod.oval:def:5800165 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * WebKitGTK: use-after-free leads to arbitrary code execution For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to ... oval:org.secpod.oval:def:708126 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:93331 The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-0108 Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. CVE-2022-32885 P1umer and Q1IQ discovered that processing maliciously crafted web content may lea ... oval:org.secpod.oval:def:93330 The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-0108 Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. CVE-2022-32885 P1umer and Q1IQ discovered that processing maliciously crafted web content may lea ... oval:org.secpod.oval:def:507686 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * WebKitGTK: Regression of CVE-2023-28205 fixes in the Red Hat Enterprise Linux For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related info ... oval:org.secpod.oval:def:91477 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:1506566 [2.38.5-1.1] - Add patch for CVE-2023-28205 Resolves: #2185745 [2.38.5-1] - Update to 2.38.5 Related: #2127467 [2.38.4-1] - Update to 2.38.4 Related: #2127467 [2.38.3-1] - Update to 2.38.3 Related: #2127467 [2.38.2-1] - Update to 2.38.2 Related: #2127467 [2.38.1-2] - Fix use with aarch64 64 KiB page ... oval:org.secpod.oval:def:2600190 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. oval:org.secpod.oval:def:507722 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * WebKitGTK: Regression of CVE-2023-28205 fixes in the Red Hat Enterprise Linux For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related info ... oval:org.secpod.oval:def:1506528 [2.36.7-1.3] - Add patch for CVE-2023-28205 Resolves: #2185740 oval:org.secpod.oval:def:2501043 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. oval:org.secpod.oval:def:1506527 [2.36.7-1.3] - Add patch for CVE-2023-28205 Resolves: #2185744 oval:org.secpod.oval:def:610529 The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-0108 Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. CVE-2022-32885 P1umer and Q1IQ discovered that processing maliciously crafted web content may lea ... oval:org.secpod.oval:def:125390 WebKitGTK is the port of the WebKit web rendering engine to the GTK platform. oval:org.secpod.oval:def:125393 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. This package contains WebKit2 based WebKitGTK for GTK 3. oval:org.secpod.oval:def:507615 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * WebKitGTK: use-after-free leads to arbitrary code execution For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to ... oval:org.secpod.oval:def:610530 The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-0108 Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. CVE-2022-32885 P1umer and Q1IQ discovered that processing maliciously crafted web content may lea ... oval:org.secpod.oval:def:1506578 [2.38.5-1.3] - Restore libwpe and wpebackend-fdo dependencies Related: #2185741 [2.38.5-1.2] - Disable libwpe and wpebackend-fdo dependencies Related: #2185741 [2.38.5-1.1] - Add patch for CVE-2023-28205 Resolves: #2185741 [2.38.5-1] - Update to 2.38.5 Related: #2127468 [2.38.4-1] - Update to 2.38 ... oval:org.secpod.oval:def:507616 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * WebKitGTK: use-after-free leads to arbitrary code execution For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to ... oval:org.secpod.oval:def:125494 WebKitGTK is the port of the WebKit web rendering engine to the GTK platform. oval:org.secpod.oval:def:88888 The host is installed with Apple Safari before 16.4.1 on Apple Mac OS 11 or Apple Mac OS 12, Apple Mac OS 13 before 13.3.1 and is prone to a use after free vulnerability. A flaw is present in the application, which fails to properly handle issues in improved memory management. On successful exploita ... oval:org.secpod.oval:def:88886 The host is missing a security update according to Apple advisory. The update is required to fix use after free vulnerability. A flaw is present in the application, which fails to issues in improved memory management. Successful exploitation allow attackers to execute arbitrary code. oval:org.secpod.oval:def:89048776 This update for webkit2gtk3 fixes the following issues: Update to version 2.38.6 : * CVE-2022-0108: Fixed information leak. * CVE-2022-32885: Fixed arbitrary code execution. * CVE-2023-25358: Fixed use-after-free vulnerability in WebCore::RenderLayer. * CVE-2023-27932: Fixed Same Origin Policy bypas ... oval:org.secpod.oval:def:89048774 This update for webkit2gtk3 fixes the following issues: Update to version 2.38.6 : * CVE-2022-0108: Fixed information leak. * CVE-2022-32885: Fixed arbitrary code execution. * CVE-2023-25358: Fixed use-after-free vulnerability in WebCore::RenderLayer. * CVE-2023-27932: Fixed Same Origin Policy bypas ... oval:org.secpod.oval:def:89048783 This update for webkit2gtk3 fixes the following issues: Update to version 2.38.6 : * CVE-2022-0108: Fixed information leak. * CVE-2022-32885: Fixed arbitrary code execution. * CVE-2023-25358: Fixed use-after-free vulnerability in WebCore::RenderLayer. * CVE-2023-27932: Fixed Same Origin Policy bypas ... oval:org.secpod.oval:def:89048782 This update for webkit2gtk3 fixes the following issues: Update to version 2.38.6 : * CVE-2022-0108: Fixed information leak. * CVE-2022-32885: Fixed arbitrary code execution. * CVE-2023-25358: Fixed use-after-free vulnerability in WebCore::RenderLayer. * CVE-2023-27932: Fixed Same Origin Policy bypas ... |