Debian Webkit2Gtk vulnerabilities

680 known vulnerabilities affecting debian/webkit2gtk.

Total CVEs

680

CISA KEV

actively exploited

Public exploits

102

Exploited in wild

Severity breakdown

CRITICAL14HIGH239MEDIUM150LOW277

Vulnerabilities

Page 25 of 34

CVE-2018-4323LOWCVSS 8.8PoCfixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4323 [HIGH] CVE-2018-4323: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed in 2.22.0-2) trixie: res

debian

CVE-2018-4317LOWCVSS 8.8PoCfixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4317 [HIGH] CVE-2018-4317: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed in 2.22.0-2) trixie: resolved (fix

debian

CVE-2018-4213LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4213 [HIGH] CVE-2018-4213: webkit2gtk - In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS befo... In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) s

debian

CVE-2018-4373LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4373 [HIGH] CVE-2018-4373: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed in 2.22.0-2) trixie: res

debian

CVE-2018-12294LOWCVSS 8.8fixed in webkit2gtk 2.20.2-1 (bookworm)2018

CVE-2018-12294 [HIGH] CVE-2018-12294: webkit2gtk - WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in We... WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.2, is vulnerable to a use after free for a WebCore::TextureMapperLayer object. Scope: local bookworm: resolved (fixed in 2.20.2-1) bullseye: resolved (fixed in 2.20.2-1) forky: resolved (fixed in 2.20.2-1) sid: resolved (fixed in 2.20.2-1) trixie: resolv

debian

CVE-2018-4299LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4299 [HIGH] CVE-2018-4299: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed in 2.22.0-2)

debian

CVE-2018-4263LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018

CVE-2018-4263 [HIGH] CVE-2018-4263: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved (fixed in 2.20.4-1) sid: resolved (fixed in 2.20.4-1)

debian

CVE-2018-4309LOWCVSS 6.1fixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4309 [MEDIUM] CVE-2018-4309: webkit2gtk - A cross-site scripting issue existed in Safari. This issue was addressed with im... A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed

debian

CVE-2018-4261LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018

CVE-2018-4261 [HIGH] CVE-2018-4261: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved (fixed in 2.20.4-1) sid: resolved (fixed in 2.20.4-1)

debian

CVE-2018-4272LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018

CVE-2018-4272 [HIGH] CVE-2018-4272: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved (fixed in 2.20.4-1) sid: resolved (fix

debian

CVE-2018-4375LOWCVSS 8.8fixed in webkit2gtk 2.22.1-1 (bookworm)2018

CVE-2018-4375 [HIGH] CVE-2018-4375: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Scope: local bookworm: resolved (fixed in 2.22.1-1) bullseye: resolved (fixed in 2.22.1-1) forky: resolved (fixed in 2.22.1-1) sid: resolved (fixed in 2.22.1-1) trixie: res

debian

CVE-2018-4146LOWCVSS 6.5fixed in webkit2gtk 2.20.0-2 (bookworm)2018

CVE-2018-4146 [MEDIUM] CVE-2018-4146: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.3 is affected. ... An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" component. It allows attackers to cause a denial of service (memory corr

debian

CVE-2018-4416LOWCVSS 8.8PoCfixed in webkit2gtk 2.22.1-1 (bookworm)2018

CVE-2018-4416 [HIGH] CVE-2018-4416: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Scope: local bookworm: resolved (fixed in 2.22.1-1) bullseye: resolved (fixed in 2.22.1-1) forky: resolved (fixed in 2.22.1-1) sid: resolved (fixed in 2.22.1-1)

debian

CVE-2018-4117LOWCVSS 6.5fixed in webkit2gtk 2.20.0-2 (bookworm)2018

CVE-2018-4117 [MEDIUM] CVE-2018-4117: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.3 is affected. ... An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. watchOS before 4.3 is affected. The issue involves the fetch API in the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sen

debian

CVE-2018-4278LOWCVSS 4.3fixed in webkit2gtk 2.20.4-1 (bookworm)2018

CVE-2018-4278 [MEDIUM] CVE-2018-4278: webkit2gtk - In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS... In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin. This issue was addressed with improved audio taint tracking. Scope: local bookworm: resolved (fixed in 2.20.4-1) bullseye: resolved (fixed in 2.20.4-1) forky: resolved

debian

CVE-2018-4165LOWCVSS 8.8fixed in webkit2gtk 2.20.0-2 (bookworm)2018

CVE-2018-4165 [HIGH] CVE-2018-4165: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.3 is affected. ... An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corru

debian

CVE-2018-4200LOWCVSS 8.8PoCfixed in webkit2gtk 2.20.2-1 (bookworm)2018

CVE-2018-4200 [HIGH] CVE-2018-4200: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.3.1 is affected... An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory cor

debian

CVE-2018-4218LOWCVSS 8.8PoCfixed in webkit2gtk 2.20.3-1 (bookworm)2018

CVE-2018-4218 [HIGH] CVE-2018-4218: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.4 is affected. ... An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cau

debian

CVE-2018-4119LOWCVSS 8.8fixed in webkit2gtk 2.20.0-2 (bookworm)2018

CVE-2018-4119 [HIGH] CVE-2018-4119: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.3 is affected. ... An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corru

debian

CVE-2018-4163LOWCVSS 8.8fixed in webkit2gtk 2.20.0-2 (bookworm)2018

CVE-2018-4163 [HIGH] CVE-2018-4163: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.3 is affected. ... An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a

debian

← Previous25 / 34Next →