Debian Wpewebkit vulnerabilities

316 known vulnerabilities affecting debian/wpewebkit.

Total CVEs
316
CISA KEV
36
actively exploited
Public exploits
1
Exploited in wild
29
Severity breakdown
CRITICAL14HIGH166MEDIUM130LOW6

Vulnerabilities

Page 12 of 16
CVE-2021-1870CRITICALCVSS 9.8KEVfixed in webkit2gtk 2.30.6-1 (bookworm)2021
CVE-2021-1870 [CRITICAL] CVE-2021-1870: webkit2gtk - A logic issue was addressed with improved restrictions. This issue is fixed in m... A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.. Scope: local bookworm: reso
debian
CVE-2021-1871CRITICALCVSS 9.8KEVfixed in webkit2gtk 2.32.0-2 (bookworm)2021
CVE-2021-1871 [CRITICAL] CVE-2021-1871: webkit2gtk - A logic issue was addressed with improved restrictions. This issue is fixed in m... A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.. Scope: local bookworm: reso
debian
CVE-2021-30858HIGHCVSS 8.8KEVfixed in webkit2gtk 2.32.4-1 (bookworm)2021
CVE-2021-30858 [HIGH] CVE-2021-30858: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Scope: local bookworm: resolved (fixed in 2.32.4-1) bullseye: resolv
debian
CVE-2021-30984HIGHCVSS 7.5fixed in webkit2gtk 2.34.4-1 (bookworm)2021
CVE-2021-30984 [HIGH] CVE-2021-30984: webkit2gtk - A race condition was addressed with improved state handling. This issue is fixed... A race condition was addressed with improved state handling. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.34.4-1) bullseye: resolved (fixed in 2.34.4-1~deb11u1) forky: resolved (
debian
CVE-2021-21806HIGHCVSS 8.8fixed in webkit2gtk 2.30.6-1 (bookworm)2021
CVE-2021-21806 [HIGH] CVE-2021-21806: webkit2gtk - An exploitable use-after-free vulnerability exists in WebKitGTK browser version ... An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. Scope: local bookworm: resolved (fixed in 2.30.6-1) bullseye: resolved (fixed in 2.30.6-
debian
CVE-2021-30797HIGHCVSS 8.8fixed in webkit2gtk 2.32.3-1 (bookworm)2021
CVE-2021-30797 [HIGH] CVE-2021-30797: webkit2gtk - This issue was addressed with improved checks. This issue is fixed in iOS 14.7, ... This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution. Scope: local bookworm: resolved (fixed in 2.32.3-1) bullseye: resolved (fixed in 2.32.3-1) forky: resolved (fixed in 2.32.3-1) sid: resolved (fixed in 2.32
debian
CVE-2021-30889HIGHCVSS 8.8fixed in webkit2gtk 2.34.1-1 (bookworm)2021
CVE-2021-30889 [HIGH] CVE-2021-30889: webkit2gtk - A buffer overflow issue was addressed with improved memory handling. This issue ... A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.34.1-1) bullseye: resolved (fixed in 2.34.1-1~deb11u1) forky: resolved (fix
debian
CVE-2021-30758HIGHCVSS 8.8fixed in webkit2gtk 2.32.2-1 (bookworm)2021
CVE-2021-30758 [HIGH] CVE-2021-30758: webkit2gtk - A type confusion issue was addressed with improved state handling. This issue is... A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.32.2-1) bullseye: resolved (fixed in 2.32.2-1) forky: resolved (fixed in 2.32.2-1
debian
CVE-2021-30661HIGHCVSS 8.8KEVfixed in webkit2gtk 2.30.1-1 (bookworm)2021
CVE-2021-30661 [HIGH] CVE-2021-30661: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.1, iOS 12.5.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.. Scope: local bookw
debian
CVE-2021-30665HIGHCVSS 8.8KEVfixed in webkit2gtk 2.32.3-1 (bookworm)2021
CVE-2021-30665 [HIGH] CVE-2021-30665: webkit2gtk - A memory corruption issue was addressed with improved state management. This iss... A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 7.4.1, iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.. Scope: local bookworm
debian
CVE-2021-30818HIGHCVSS 8.8fixed in webkit2gtk 2.34.1-1 (bookworm)2021
CVE-2021-30818 [HIGH] CVE-2021-30818: webkit2gtk - A type confusion issue was addressed with improved state handling. This issue is... A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, iOS 15 and iPadOS 15, Safari 15, watchOS 8. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.34.1-1) bullseye: resolved (fixed in 2.34.1-1~deb11u1) forky: resolved
debian
CVE-2021-30762HIGHCVSS 8.8KEVfixed in webkit2gtk 2.28.0-2 (bookworm)2021
CVE-2021-30762 [HIGH] CVE-2021-30762: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.. Scope: local bookworm: resolved (fixed in 2.28.0-2) bullseye: resolved (fixed in 2.28.0-2) forky: res
debian
CVE-2021-30749HIGHCVSS 8.8fixed in webkit2gtk 2.32.3-1 (bookworm)2021
CVE-2021-30749 [HIGH] CVE-2021-30749: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.32.3-1) bullseye: resolved (fixed in 2.32.3-1) forky
debian
CVE-2021-30888HIGHCVSS 7.4fixed in webkit2gtk 2.34.1-1 (bookworm)2021
CVE-2021-30888 [HIGH] CVE-2021-30888: webkit2gtk - An information leakage issue was addressed. This issue is fixed in iOS 15.1 and ... An information leakage issue was addressed. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1. A malicious website using Content Security Policy reports may be able to leak information via redirect behavior . Scope: local bookworm: resolved (fixed in 2.34.1-1) bullseye: resolved (fixed in
debian
CVE-2021-30809HIGHCVSS 8.8fixed in webkit2gtk 2.32.4-1 (bookworm)2021
CVE-2021-30809 [HIGH] CVE-2021-30809: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.32.4-1) bullseye: resolved (fixed in 2.32.4-1~deb11u1) forky: resolved (fixed in 2.32.4-1) sid
debian
CVE-2021-30936HIGHCVSS 8.8fixed in webkit2gtk 2.34.4-1 (bookworm)2021
CVE-2021-30936 [HIGH] CVE-2021-30936: webkit2gtk - A use after free issue was addressed with improved memory management. This issue... A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.34.4-1) bullseye: resolved (fixed in 2.34.4-1~deb11u1) forky: r
debian
CVE-2021-45482HIGHCVSS 8.8fixed in webkit2gtk 2.32.4-1 (bookworm)2021
CVE-2021-45482 [HIGH] CVE-2021-45482: webkit2gtk - In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode:... In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889. Scope: local bookworm: resolved (fixed in 2.32.4-1) bullseye: resolved (fixed in 2.32.4-1~deb11u1) forky: resolved (fixed in 2.32.4-1) sid: resolved (fixed in 2.32.4-1) trixie: resolved (fixed in 2.32.4-1)
debian
CVE-2021-30953HIGHCVSS 8.8fixed in webkit2gtk 2.34.4-1 (bookworm)2021
CVE-2021-30953 [HIGH] CVE-2021-30953: webkit2gtk - An out-of-bounds read was addressed with improved bounds checking. This issue is... An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.34.4-1) bullseye: resolved (fixed in 2.34.4-1~deb11u1) forky: reso
debian
CVE-2021-30799HIGHCVSS 8.8fixed in webkit2gtk 2.32.3-1 (bookworm)2021
CVE-2021-30799 [HIGH] CVE-2021-30799: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ... Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. Processing maliciously crafted web content may lead to arbitrary code execution. Scope: local bookworm: resolved (fixed in 2.32.3-1) bullseye: resolved (fixed in 2.
debian
CVE-2021-30848HIGHCVSS 7.8fixed in webkit2gtk 2.32.4-1 (bookworm)2021
CVE-2021-30848 [HIGH] CVE-2021-30848: webkit2gtk - A memory corruption issue was addressed with improved memory handling. This issu... A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution. Scope: local bookworm: resolved (fixed in 2.32.4-1) bullseye: resolved (fixed in 2.32.4-1~deb11u1) forky: resolved (fixed in 2.32.4-1) sid: r
debian
← Previous12 / 16Next →