Debian 10 Buster DSA-4945-1 Critical: Webkit2gtk Memory Flaws
debian
July 28, 2021
The following vulnerabilities have been discovered in the webkit2gtk web engine: CVE-2021-21775
Summary
The following vulnerabilities have been discovered in the webkit2gtk
web engine:
CVE-2021-21775
Marcin Towalski discovered that a specially crafted web page can
lead to a potential information leak and further memory
corruption. In order to trigger the vulnerability, a victim must
be tricked into visiting a malicious webpage.
CVE-2021-21779
Marcin Towalski discovered that a specially crafted web page can
lead to a potential information leak and further memory
corruption. In order to trigger the vulnerability, a victim must
be tricked into visiting a malicious webpage.
CVE-2021-30663
An anonymous researcher discovered that processing maliciously
crafted web content may lead to arbitrary code execution.
CVE-2021-30665
yangkang discovered that processing maliciously crafted web
content may lead to arbitrary code execution. Apple is aware of a
report that this issue may have been actively exploited.
CVE-2021-30689
An anonymous researcher discovered th...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: webkit2gtk
CVE ID: CVE-2021-21775 CVE-2021-21779 CVE-2021-30663 CVE-2021-30665
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!