Debian Webkit2Gtk vulnerabilities
678 known vulnerabilities affecting debian/webkit2gtk.
Total CVEs
678
CISA KEV
38
actively exploited
Public exploits
113
Exploited in wild
53
Severity breakdown
CRITICAL14HIGH239MEDIUM150LOW275
Vulnerabilities
Page 13 of 34
CVE-2023-32393P3HIGHCVSS 8.8fixed in webkit2gtk 2.40.0-1 (bookworm)2023
CVE-2023-32393 [HIGH] CVE-2023-32393: webkit2gtk - The issue was addressed with improved memory handling. This issue is fixed in wa...
The issue was addressed with improved memory handling. This issue is fixed in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. Processing web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.40.0-1)
bullseye: resolved (fixed in 2.40.1-1~deb11u1)
forky: resolved (fixed in 2.40.0-1)
sid: resolved (fixed
debian
CVE-2023-23518P3HIGHCVSS 8.8fixed in webkit2gtk 2.38.4-1 (bookworm)2023
CVE-2023-23518 [HIGH] CVE-2023-23518: webkit2gtk - The issue was addressed with improved memory handling. This issue is fixed in ma...
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, watchOS 9.3, macOS Big Sur 11.7.3, Safari 16.3, tvOS 16.3, iOS 16.3 and iPadOS 16.3. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.38.4-1)
bullseye: resolved (fixed
debian
CVE-2023-23517P3HIGHCVSS 8.8fixed in webkit2gtk 2.38.4-1 (bookworm)2023
CVE-2023-23517 [HIGH] CVE-2023-23517: webkit2gtk - The issue was addressed with improved memory handling. This issue is fixed in ma...
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, watchOS 9.3, macOS Big Sur 11.7.3, Safari 16.3, tvOS 16.3, iOS 16.3 and iPadOS 16.3. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.38.4-1)
bullseye: resolved (fixed
debian
CVE-2022-26709P3HIGHCVSS 8.8fixed in webkit2gtk 2.36.3-1 (bookworm)2022
CVE-2022-26709 [HIGH] CVE-2022-26709: webkit2gtk - A use after free issue was addressed with improved memory management. This issue...
A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4, Safari 15.5. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.36.3-1)
bullseye: resolved (fixed in 2.36.3-1~deb11u1)
forky: r
debian
CVE-2022-26710P3HIGHCVSS 8.8fixed in webkit2gtk 2.36.4-1 (bookworm)2022
CVE-2022-26710 [HIGH] CVE-2022-26710: webkit2gtk - A use after free issue was addressed with improved memory management. This issue...
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 15.5 and iPadOS 15.5, macOS Monterey 12.4, tvOS 15.5, watchOS 8.6. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.36.4-1)
bullseye: resolved (fixed in 2.36.4-1~deb11u1)
forky: resolved (fixe
debian
CVE-2024-27851P3HIGHCVSS 8.8fixed in webkit2gtk 2.44.3-1~deb12u1 (bookworm)2024
CVE-2024-27851 [HIGH] CVE-2024-27851: webkit2gtk - The issue was addressed with improved bounds checks. This issue is fixed in Safa...
The issue was addressed with improved bounds checks. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.44.3-1~deb12u1)
bullseye: resolved (fixed in 2.44.3-1)
forky: resol
debian
CVE-2017-7092P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7092 [HIGH] CVE-2017-7092: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2024-54534P3CRITICALCVSS 9.8fixed in webkit2gtk 2.46.0-2~deb12u1 (bookworm)2024
CVE-2024-54534 [CRITICAL] CVE-2024-54534: webkit2gtk - The issue was addressed with improved memory handling. This issue is fixed in Sa...
The issue was addressed with improved memory handling. This issue is fixed in Safari 18.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.6, macOS Sequoia 15.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. Processing maliciously crafted web content may lead to memory corruption.
Scope: local
bookworm: resolved (fixed in 2.46.0-2~deb12u1)
bullseye: resolved (fixed in 2.46.0-
debian
CVE-2017-2415P3LOWCVSS 8.8fixed in webkit2gtk 2.14.6-1 (bookworm)2017
CVE-2017-2415 [HIGH] CVE-2017-2415: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3 is affected. ...
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code by leveraging an unspecified "type confusion."
Scope: local
bookworm: resolved (fixed in 2.14.6-1
debian
CVE-2020-9893P3HIGHCVSS 8.8fixed in webkit2gtk 2.28.4-1 (bookworm)2020
CVE-2020-9893 [HIGH] CVE-2020-9893: webkit2gtk - A use after free issue was addressed with improved memory management. This issue...
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.
Scope: local
bookworm: r
debian
CVE-2020-9983P3HIGHCVSS 8.8fixed in webkit2gtk 2.30.3-1 (bookworm)2020
CVE-2020-9983 [HIGH] CVE-2020-9983: webkit2gtk - An out-of-bounds write issue was addressed with improved bounds checking. This i...
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to code execution.
Scope: local
bookworm: resolved (fixed in 2.30.3-1)
bullseye: resolved (fixed in 2.30.3-1)
forky: resolved (fixed in 2.30.3-1)
sid: resolved (fixed in 2.30.3-1)
trixie: resolved (fixed i
debian
CVE-2019-7285P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.1-1 (bookworm)2019
CVE-2019-7285 [HIGH] CVE-2019-7285: webkit2gtk - A use after free issue was addressed with improved memory management. This issue...
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.24.1-1)
bullseye: resolved (fixed in 2.24.1-1)
forky: resolved
debian
CVE-2019-6227P3LOWCVSS 8.8fixed in webkit2gtk 2.22.5-1 (bookworm)2019
CVE-2019-6227 [HIGH] CVE-2019-6227: webkit2gtk - A memory corruption issue was addressed with improved memory handling. This issu...
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, watchOS 5.1.3, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.22.5-1)
bullseye: resolved (fixed in 2.22
debian
CVE-2019-8583P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.1-1 (bookworm)2019
CVE-2019-8583 [HIGH] CVE-2019-8583: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ...
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.24.1-1)
bullse
debian
CVE-2021-30797P3HIGHCVSS 8.8fixed in webkit2gtk 2.32.3-1 (bookworm)2021
CVE-2021-30797 [HIGH] CVE-2021-30797: webkit2gtk - This issue was addressed with improved checks. This issue is fixed in iOS 14.7, ...
This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.
Scope: local
bookworm: resolved (fixed in 2.32.3-1)
bullseye: resolved (fixed in 2.32.3-1)
forky: resolved (fixed in 2.32.3-1)
sid: resolved (fixed in 2.32
debian
CVE-2020-3865P3HIGHCVSS 8.8fixed in webkit2gtk 2.26.4-1 (bookworm)2020
CVE-2020-3865 [HIGH] CVE-2020-3865: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ...
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.26.
debian
CVE-2019-8680P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.4-1 (bookworm)2019
CVE-2019-8680 [HIGH] CVE-2019-8680: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ...
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.24.4
debian
CVE-2019-8686P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.2-1 (bookworm)2019
CVE-2019-8686 [HIGH] CVE-2019-8686: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ...
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.24.2
debian
CVE-2019-8666P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.3-1 (bookworm)2019
CVE-2019-8666 [HIGH] CVE-2019-8666: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ...
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.24.3
debian
CVE-2019-8677P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.2-1 (bookworm)2019
CVE-2019-8677 [HIGH] CVE-2019-8677: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ...
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.24.2
debian