DSA-5030-1 webkit2gtk -- webkit2gtkID: oval:org.secpod.oval:def:605725 | Date: (C)2021-12-28 (M)2024-05-22 |
Class: PATCH | Family: unix |
The following vulnerabilities have been discovered in the webkit2gtk web engine: CVE-2021-30887 Narendra Bhati discovered that processing maliciously crafted web content may lead to unexpectedly unenforced Content Security Policy. CVE-2021-30890 An anonymous researcher discovered that processing maliciously crafted web content may lead to universal cross site scripting.
Platform: |
Debian 10.x |
Debian 11.x |
Product: |
webkit2gtk-driver |
gir1.2-javascriptcoregtk-4.0 |
gir1.2-webkit2-4.0 |
libjavascriptcoregtk-4.0-18 |
libjavascriptcoregtk-4.0-bin |
libjavascriptcoregtk-4.0-dev |
libwebkit2gtk-4.0-37 |
libwebkit2gtk-4.0-dev |
libwebkit2gtk-4.0-doc |