cbcvebase.

Debian Webkit2Gtk vulnerabilities

678 known vulnerabilities affecting debian/webkit2gtk.

Total CVEs
678
CISA KEV
38
actively exploited
Public exploits
113
Exploited in wild
53
Severity breakdown
CRITICAL14HIGH239MEDIUM150LOW275

Vulnerabilities

Page 23 of 34
CVE-2020-11793P3HIGHCVSS 8.8fixed in webkit2gtk 2.28.1-1 (bookworm)2020
CVE-2020-11793 [HIGH] CVE-2020-11793: webkit2gtk - A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2... A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash). Scope: local bookworm: resolved (fixed in 2.28.1-1) bullseye: resolved (fixed in 2.28.1-1) forky: resolved (fixed in 2.28.1-1) s
debian
CVE-2018-4262P3LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018
CVE-2018-4262 [HIGH] CVE-2018-4262: webkit2gtk - In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS... In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, multiple memory corruption issues were addressed with improved memory handling. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved (fixed in 2.20.4-1) sid: resolved (fixed in 2.20.4-1)
debian
CVE-2018-12294P3LOWCVSS 8.8fixed in webkit2gtk 2.20.2-1 (bookworm)2018
CVE-2018-12294 [HIGH] CVE-2018-12294: webkit2gtk - WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in We... WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.2, is vulnerable to a use after free for a WebCore::TextureMapperLayer object. Scope: local bookworm: resolved (fixed in 2.20.2-1) bullseye: resolved (fixed in 2.20.2-1) forky: resolved (fixed in 2.20.2-1) sid: resolved (fixed in 2.20.2-1) trixie: resolv
debian
CVE-2018-4209P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4209 [HIGH] CVE-2018-4209: webkit2gtk - In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS befo... In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) s
debian
CVE-2018-4265P3LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018
CVE-2018-4265 [HIGH] CVE-2018-4265: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved (fixed in 2.20.4-1) sid: resolved (fixed in 2.20.4-1)
debian
CVE-2018-4261P3LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018
CVE-2018-4261 [HIGH] CVE-2018-4261: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved (fixed in 2.20.4-1) sid: resolved (fixed in 2.20.4-1)
debian
CVE-2018-4267P3LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018
CVE-2018-4267 [HIGH] CVE-2018-4267: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved (fixed in 2.20.4-1) sid: resolved (fixed in 2.20.4-1)
debian
CVE-2018-4263P3LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018
CVE-2018-4263 [HIGH] CVE-2018-4263: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved (fixed in 2.20.4-1) sid: resolved (fixed in 2.20.4-1)
debian
CVE-2018-4373P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4373 [HIGH] CVE-2018-4373: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed in 2.22.0-2) trixie: res
debian
CVE-2018-4284P3LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018
CVE-2018-4284 [HIGH] CVE-2018-4284: webkit2gtk - A type confusion issue was addressed with improved memory handling. This issue a... A type confusion issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved (fixed in 2.20.4-1) sid: resolved (fixed in 2.20.4
debian
CVE-2020-27918P3HIGHCVSS 7.8fixed in webkit2gtk 2.30.6-1 (bookworm)2020
CVE-2020-27918 [HIGH] CVE-2020-27918: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, Safari 14.0.1, tvOS 14.2, iTunes 12.11 for Windows. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.30.6-1) b
debian
CVE-2017-7090P3LOWCVSS 7.5fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7090 [HIGH] CVE-2017-7090: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa... An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive cookie information via
debian
CVE-2021-30848P3HIGHCVSS 7.8fixed in webkit2gtk 2.32.4-1 (bookworm)2021
CVE-2021-30848 [HIGH] CVE-2021-30848: webkit2gtk - A memory corruption issue was addressed with improved memory handling. This issu... A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution. Scope: local bookworm: resolved (fixed in 2.32.4-1) bullseye: resolved (fixed in 2.32.4-1~deb11u1) forky: resolved (fixed in 2.32.4-1) sid: r
debian
CVE-2024-54479P3HIGHCVSS 7.5fixed in webkit2gtk 2.46.5-1~deb12u1 (bookworm)2024
CVE-2024-54479 [HIGH] CVE-2024-54479: webkit2gtk - The issue was addressed with improved checks. This issue is fixed in Safari 18.2... The issue was addressed with improved checks. This issue is fixed in Safari 18.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sequoia 15.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. Processing maliciously crafted web content may lead to an unexpected process crash. Scope: local bookworm: resolved (fixed in 2.46.5-1~deb12u1) bullseye: resolved (fixed in 2.46.5-1~d
debian
CVE-2024-27856P3HIGHCVSS 7.8fixed in webkit2gtk 2.46.0-2~deb12u1 (bookworm)2024
CVE-2024-27856 [HIGH] CVE-2024-27856: webkit2gtk - The issue was addressed with improved checks. This issue is fixed in Safari 17.5... The issue was addressed with improved checks. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing a file may lead to unexpected app termination or arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.46.0-2~deb12u1) bullseye: resolved (fix
debian
CVE-2018-4208P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4208 [HIGH] CVE-2018-4208: webkit2gtk - In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS befo... In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) s
debian
CVE-2018-4207P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4207 [HIGH] CVE-2018-4207: webkit2gtk - In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS befo... In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) s
debian
CVE-2018-4212P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4212 [HIGH] CVE-2018-4212: webkit2gtk - In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS befo... In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) s
debian
CVE-2018-4213P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4213 [HIGH] CVE-2018-4213: webkit2gtk - In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS befo... In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) s
debian
CVE-2018-4210P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4210 [HIGH] CVE-2018-4210: webkit2gtk - In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iT... In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, an array indexing issue existed in the handling of a function in javascript core. This issue was addressed with improved checks. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2)
debian
Debian Webkit2Gtk vulnerabilities | cvebase