RHSA-2024:2126 -- Redhat webkit2gtk3ID: oval:org.secpod.oval:def:509288 | Date: (C)2024-05-23 (M)2024-06-19 |
Class: PATCH | Family: unix |
WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: webkitgtk: Processing web content may lead to arbitrary code execution webkitgtk: Processing web content may lead to arbitrary code execution webkitgtk: Processing web content may lead to arbitrary code execution webkitgtk: Processing a file may lead to a denial of service or potentially disclose memory contents webkitgtk: User password may be read aloud by a text-to-speech accessibility feature webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports webkitgtk: Processing web content may lead to a denial of service webkitgtk: processing a malicious image may lead to a denial of service webkitgtk: processing malicious web content may lead to arbitrary code execution webkitgtk: A maliciously crafted webpage may be able to fingerprint the user For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.4 Release Notes linked from the References section.
Platform: |
Red Hat Enterprise Linux 9 |