cbcvebase.

Debian Webkit2Gtk vulnerabilities

678 known vulnerabilities affecting debian/webkit2gtk.

Total CVEs
678
CISA KEV
38
actively exploited
Public exploits
113
Exploited in wild
53
Severity breakdown
CRITICAL14HIGH239MEDIUM150LOW275

Vulnerabilities

Page 14 of 34
CVE-2019-8679P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.2-1 (bookworm)2019
CVE-2019-8679 [HIGH] CVE-2019-8679: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.24.2
debian
CVE-2019-8687P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.3-1 (bookworm)2019
CVE-2019-8687 [HIGH] CVE-2019-8687: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.24.3
debian
CVE-2019-8681P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.3-1 (bookworm)2019
CVE-2019-8681 [HIGH] CVE-2019-8681: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.24.3
debian
CVE-2019-6234P3LOWCVSS 8.8fixed in webkit2gtk 2.22.4-1 (bookworm)2019
CVE-2019-6234 [HIGH] CVE-2019-6234: webkit2gtk - A memory corruption issue was addressed with improved memory handling. This issu... A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.22.4-1) bullseye: resolved (fixed in 2.22.4-1) forky: re
debian
CVE-2019-6233P3LOWCVSS 8.8fixed in webkit2gtk 2.22.4-1 (bookworm)2019
CVE-2019-6233 [HIGH] CVE-2019-6233: webkit2gtk - A memory corruption issue was addressed with improved memory handling. This issu... A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.22.4-1) bullseye: resolved (fixed in 2.22.4-1) forky: re
debian
CVE-2019-8644P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.4-1 (bookworm)2019
CVE-2019-8644 [HIGH] CVE-2019-8644: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.24.4
debian
CVE-2020-9948P3HIGHCVSS 8.8fixed in webkit2gtk 2.30.1-1 (bookworm)2020
CVE-2020-9948 [HIGH] CVE-2020-9948: webkit2gtk - A type confusion issue was addressed with improved memory handling. This issue i... A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.30.1-1) bullseye: resolved (fixed in 2.30.1-1) forky: resolved (fixed in 2.30.1-1) sid: resolved (fixed in 2.30.1-1) trixie: resolved (fix
debian
CVE-2023-42950P3HIGHCVSS 8.8fixed in webkit2gtk 2.44.1-1~deb12u1 (bookworm)2023
CVE-2023-42950 [HIGH] CVE-2023-42950: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, tvOS 17.2, watchOS 10.2, macOS Sonoma 14.2. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.44.1-1~deb12u1) bullseye: resolved (fixed in 2.44.1-1~deb11u1) f
debian
CVE-2025-31273P3HIGHCVSS 8.8fixed in webkit2gtk 2.48.5-1~deb12u1 (bookworm)2025
CVE-2025-31273 [HIGH] CVE-2025-31273: webkit2gtk - The issue was addressed with improved memory handling. This issue is fixed in Sa... The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing maliciously crafted web content may lead to memory corruption. Scope: local bookworm: resolved (fixed in 2.48.5-1~deb12u1) bullseye: resolved (fixed in 2.48.5-1~deb11u1) forky: r
debian
CVE-2022-22624P3HIGHCVSS 8.8fixed in webkit2gtk 2.36.0-1 (bookworm)2022
CVE-2022-22624 [HIGH] CVE-2022-22624: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.3, iOS 15.4 and iPadOS 15.4, tvOS 15.4, Safari 15.4. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.36.0-1) bullseye: resolved (fixed in 2.36.0-3~deb11u1) forky: resolved (fixe
debian
CVE-2023-28198P3HIGHCVSS 8.8fixed in webkit2gtk 2.40.1-1 (bookworm)2023
CVE-2023-28198 [HIGH] CVE-2023-28198: webkit2gtk - A use-after-free issue was addressed with improved memory management. This issue... A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3. Processing web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.40.1-1) bullseye: resolved (fixed in 2.40.1-1~deb11u1) forky: resolved (fixed in 2.40.1-1) sid: resolved (fixed in 2.40.1
debian
CVE-2022-42826P3HIGHCVSS 8.8fixed in webkit2gtk 2.38.4-1 (bookworm)2022
CVE-2022-42826 [HIGH] CVE-2022-42826: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13, iOS 16.1 and iPadOS 16, Safari 16.1. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.38.4-1) bullseye: resolved (fixed in 2.38.4-2~deb11u1) forky: resolved (fixed in 2.38.4-1) s
debian
CVE-2023-42970P3HIGHCVSS 8.8fixed in webkit2gtk 2.42.1-1~deb12u1 (bookworm)2023
CVE-2023-42970 [HIGH] CVE-2023-42970: webkit2gtk - A use-after-free issue was addressed with improved memory management. This issue... A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.42.1-1~deb12u1) bullseye: resolved (fixed in 2.42.1-1~deb11u1) forky: resolved (fixed in 2.42.0-
debian
CVE-2020-13584P3HIGHCVSS 8.8fixed in webkit2gtk 2.30.3-1 (bookworm)2020
CVE-2020-13584 [HIGH] CVE-2020-13584: webkit2gtk - An exploitable use-after-free vulnerability exists in WebKitGTK browser version ... An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.1 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in a remote code execution. The victim needs to visit a malicious web site to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.30.3-1) bullseye: resolved (fixed in 2.30
debian
CVE-2023-40397P3CRITICALCVSS 9.8fixed in webkit2gtk 2.40.5-1~deb12u1 (bookworm)2023
CVE-2023-40397 [CRITICAL] CVE-2023-40397: webkit2gtk - The issue was addressed with improved checks. This issue is fixed in macOS Ventu... The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5. A remote attacker may be able to cause arbitrary javascript code execution. Scope: local bookworm: resolved (fixed in 2.40.5-1~deb12u1) bullseye: resolved (fixed in 2.40.5-1~deb11u1) forky: resolved (fixed in 2.40.5-1) sid: resolved (fixed in 2.40.5-1) trixie: resolved (f
debian
CVE-2025-24264P3CRITICALCVSS 9.8fixed in webkit2gtk 2.48.1-2~deb12u1 (bookworm)2025
CVE-2025-24264 [CRITICAL] CVE-2025-24264: webkit2gtk - The issue was addressed with improved memory handling. This issue is fixed in Sa... The issue was addressed with improved memory handling. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing maliciously crafted web content may lead to an unexpected Safari crash. Scope: local bookworm: resolved (fixed in 2.48.1-2~deb12u1) bullseye: resolved (fixed i
debian
CVE-2018-4204P3LOWCVSS 8.8fixed in webkit2gtk 2.20.1-1 (bookworm)2018
CVE-2018-4204 [HIGH] CVE-2018-4204: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.4 is affected. ... An issue was discovered in certain Apple products. iOS before 11.4 is affected. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a
debian
CVE-2018-4199P3LOWCVSS 8.8fixed in webkit2gtk 2.20.3-1 (bookworm)2018
CVE-2018-4199 [HIGH] CVE-2018-4199: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.4 is affected. ... An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (buffer ove
debian
CVE-2025-43343P3CRITICALCVSS 9.8fixed in webkit2gtk 2.50.1-1~deb12u1 (bookworm)2025
CVE-2025-43343 [CRITICAL] CVE-2025-43343: webkit2gtk - The issue was addressed with improved memory handling. This issue is fixed in Sa... The issue was addressed with improved memory handling. This issue is fixed in Safari 26, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, watchOS 26. Processing maliciously crafted web content may lead to an unexpected process crash. Scope: local bookworm: resolved (fixed in 2.50.1-1~deb12u1) bullseye: resolved (fixed in 2.50.1-1~deb11u1) forky: re
debian
CVE-2019-8544P3HIGHCVSS 8.8fixed in webkit2gtk 2.24.1-1 (bookworm)2019
CVE-2019-8544 [HIGH] CVE-2019-8544: webkit2gtk - A memory corruption issue was addressed with improved memory handling. This issu... A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.24.1-1) bullseye: resolved (fixed in 2.24.1-1) fo
debian
Debian Webkit2Gtk vulnerabilities | cvebase