Search CVE reports
21 – 30 of 669 results
CVE-2024-27808
Medium prioritySome fixes available 2 of 16
The issue was addressed with improved memory handling. This issue is fixed in tvOS 17.5, visionOS 1.2, Safari 17.5, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. Processing web content may lead to arbitrary code execution.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
webkit2gtk | Fixed | Fixed | Ignored | Ignored | Ignored |
webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
wpewebkit | Not in release | Ignored | Ignored | — | — |
CVE-2022-32933
Medium prioritySome fixes available 2 of 17
An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Monterey 12.5. A website may be able to track the websites a user visited in Safari private browsing mode.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
webkit2gtk | Not affected | Fixed | Fixed | Ignored | Ignored |
webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
wpewebkit | Not in release | Ignored | Ignored | Ignored | Ignored |
CVE-2024-27834
Medium prioritySome fixes available 3 of 18
The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14.5. An attacker with arbitrary read and write capability may be able to bypass...
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
webkit2gtk | Fixed | Fixed | Ignored | Ignored | Ignored |
webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
wpewebkit | Not in release | Ignored | Ignored | — | — |
CVE-2024-4558
Medium prioritySome fixes available 2 of 16
Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
6 affected packages
chromium-browser, qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
chromium-browser | Not affected | Not affected | Not affected | — | — |
qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
webkit2gtk | Fixed | Fixed | Ignored | Ignored | Ignored |
webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
wpewebkit | Not in release | Ignored | Ignored | — | — |
CVE-2024-23271
Medium prioritySome fixes available 1 of 15
A logic issue was addressed with improved checks. This issue is fixed in iOS 17.3 and iPadOS 17.3, Safari 17.3, tvOS 17.3, macOS Sonoma 14.3, watchOS 10.3. A malicious website may cause unexpected cross-origin behavior.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
webkit2gtk | Not affected | Fixed | Ignored | Ignored | Ignored |
webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
wpewebkit | Not in release | Ignored | Ignored | — | — |
CVE-2023-42956
Medium prioritySome fixes available 2 of 17
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, macOS Sonoma 14.2. Processing web content may lead to a denial-of-service.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
webkit2gtk | Not affected | Fixed | Ignored | Ignored | Ignored |
webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
wpewebkit | Not in release | Ignored | Ignored | — | — |
CVE-2023-42950
Medium prioritySome fixes available 2 of 17
A use after free issue was addressed with improved memory management. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, tvOS 17.2, watchOS 10.2, macOS Sonoma 14.2. Processing maliciously crafted web content may lead to...
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
webkit2gtk | Not affected | Fixed | Ignored | Ignored | Ignored |
webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
wpewebkit | Not in release | Ignored | Ignored | — | — |
CVE-2024-42956
Medium priority5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtwebkit-opensource-src | — | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
qtwebkit-source | — | Not in release | Not in release | Needs evaluation | Needs evaluation |
webkit2gtk | — | Vulnerable | Ignored | Ignored | Ignored |
webkitgtk | — | Not in release | Not in release | Needs evaluation | Needs evaluation |
wpewebkit | — | Needs evaluation | Needs evaluation | — | — |
CVE-2024-23284
Medium prioritySome fixes available 2 of 17
A logic issue was addressed with improved state management. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4....
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
webkit2gtk | Not affected | Fixed | Ignored | Ignored | Ignored |
webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
wpewebkit | Not in release | Ignored | Ignored | — | — |
CVE-2024-23280
Medium prioritySome fixes available 2 of 17
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, tvOS 17.4. A maliciously crafted webpage may be able to fingerprint the user.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
webkit2gtk | Not affected | Fixed | Ignored | Ignored | Ignored |
webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
wpewebkit | Not in release | Ignored | Ignored | — | — |