Debian Webkit2Gtk vulnerabilities

680 known vulnerabilities affecting debian/webkit2gtk.

Total CVEs

680

CISA KEV

actively exploited

Public exploits

102

Exploited in wild

Severity breakdown

CRITICAL14HIGH239MEDIUM150LOW277

Vulnerabilities

Page 26 of 34

CVE-2018-4214LOWCVSS 8.8fixed in webkit2gtk 2.20.0-2 (bookworm)2018

CVE-2018-4214 [HIGH] CVE-2018-4214: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.4 is affected. ... An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to cause a denial of service (me

debian

CVE-2018-4314LOWCVSS 8.8PoCfixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4314 [HIGH] CVE-2018-4314: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed in 2.22.0-2) trixie: resolved (fix

debian

CVE-2018-4222LOWCVSS 8.8PoCfixed in webkit2gtk 2.20.3-1 (bookworm)2018

CVE-2018-4222 [HIGH] CVE-2018-4222: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.4 is affected. ... An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code via a

debian

CVE-2018-4201LOWCVSS 8.8fixed in webkit2gtk 2.20.1-2 (bookworm)2018

CVE-2018-4201 [HIGH] CVE-2018-4201: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.4 is affected. ... An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cau

debian

CVE-2018-4443LOWCVSS 8.8PoCfixed in webkit2gtk 2.22.3-1 (bookworm)2018

CVE-2018-4443 [HIGH] CVE-2018-4443: webkit2gtk - A memory corruption issue was addressed with improved memory handling. This issu... A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Scope: local bookworm: resolved (fixed in 2.22.3-1) bullseye: resolved (fixed in 2.22.3-1) forky: resolved (fixed in 2.22.3-1) sid: resolved (fixed in 2

debian

CVE-2018-4271LOWCVSS 6.5fixed in webkit2gtk 2.20.2-1 (bookworm)2018

CVE-2018-4271 [MEDIUM] CVE-2018-4271: webkit2gtk - Multiple memory corruption issues were addressed with improved input validation.... Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Scope: local bookworm: resolved (fixed in 2.20.2-1) bullseye: resolved (fixed in 2.20.2-1) forky: resolved (fixed in 2.20.2-1) sid: resolved (

debian

CVE-2018-4361LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4361 [HIGH] CVE-2018-4361: webkit2gtk - A memory consumption issue was addressed with improved memory handling. This iss... A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed in 2.22.0-2) trixie:

debian

CVE-2018-4315LOWCVSS 8.8PoCfixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4315 [HIGH] CVE-2018-4315: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed in 2.22.0-2) trixie: resolved (fix

debian

CVE-2018-4197LOWCVSS 8.8PoCfixed in webkit2gtk 2.22.0-2 (bookworm)2018

CVE-2018-4197 [HIGH] CVE-2018-4197: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. Scope: local bookworm: resolved (fixed in 2.22.0-2) bullseye: resolved (fixed in 2.22.0-2) forky: resolved (fixed in 2.22.0-2) sid: resolved (fixed in 2.22.0-2) trixie: resolved (fix

debian

CVE-2018-4129LOWCVSS 8.8fixed in webkit2gtk 2.20.0-2 (bookworm)2018

CVE-2018-4129 [HIGH] CVE-2018-4129: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.3 is affected. ... An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a

debian

CVE-2018-4386LOWCVSS 8.8PoCfixed in webkit2gtk 2.22.3-1 (bookworm)2018

CVE-2018-4386 [HIGH] CVE-2018-4386: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Scope: local bookworm: resolved (fixed in 2.22.3-1) bullseye: resolved (fixed in 2.22.3-1) forky: resolved (fixed in 2.22.3-1) sid: resolved (fixed in 2.22.3-1)

debian

CVE-2018-4246LOWCVSS 8.8fixed in webkit2gtk 2.20.4-1 (bookworm)2018

CVE-2018-4246 [HIGH] CVE-2018-4246: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.4 is affected. ... An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code via a

debian

CVE-2017-2536LOWCVSS 8.8PoCfixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-2536 [HIGH] CVE-2017-2536: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.2 is affected... An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Scope: local bookworm: resol

debian

CVE-2017-7055LOWCVSS 8.8fixed in webkit2gtk 2.16.6-1 (bookworm)2017

CVE-2017-7055 [HIGH] CVE-2017-7055: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected... An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memo

debian

CVE-2017-6980LOWCVSS 8.8PoCfixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-6980 [HIGH] CVE-2017-6980: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.2 is affected... An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Scope: local bookworm: resol

debian

CVE-2017-2362LOWCVSS 8.8PoCfixed in webkit2gtk 2.14.4-1 (bookworm)2017

CVE-2017-2362 [HIGH] CVE-2017-2362: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.2.1 is affected... An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Scope: local bookworm: resol

debian

CVE-2017-2373LOWCVSS 8.8PoCfixed in webkit2gtk 2.14.4-1 (bookworm)2017

CVE-2017-2373 [HIGH] CVE-2017-2373: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.2.1 is affected... An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Scope: local bookworm: resol

debian

CVE-2017-13794LOWCVSS 8.8ExploitedPoCfixed in webkit2gtk 2.18.1-1 (bookworm)2017

CVE-2017-13794 [HIGH] CVE-2017-13794: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.1 is affected. ... An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory c

debian

CVE-2017-7048LOWCVSS 8.8PoCfixed in webkit2gtk 2.16.6-1 (bookworm)2017

CVE-2017-7048 [HIGH] CVE-2017-7048: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected... An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memo

debian

CVE-2017-1000121LOWCVSS 9.8fixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-1000121 [CRITICAL] CVE-2017-1000121: webkit2gtk - The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not pro... The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate message size metadata, allowing a compromised secondary process to trigger an integer overflow and subsequent buffer overflow in the UI process. This vulnerability does not affect Apple products. Scope: local bookworm: resolved (fixed in 2.16.3-2) bullseye: reso

debian

← Previous26 / 34Next →