Debian: DSA-5527-1: webkit2gtk security update
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2023-39928
Find the information you need for your favorite open source distribution .
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2023-39928
Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix, which might result in denial of service, information disclosure or privilege escalation.
Kevin Backhouse discovered an out-of-bounds array access in Libcue, a library for parsing CD metadata, which could result in the execution of arbitrary code.
Two security issues were found in Curl, an easy-to-use client-side URL transfer library and command line tool: CVE-2023-38545
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. CVE-2023-24998
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. CVE-2023-28709
Multiple security issues were discovered in MediaWiki, a website engine for collaborative work, which could result in cross-site scripting, denial of service or information disclosure
Maxim Suhanov discovered multiple vulnerabilities in GURB2's code to handle NTFS filesystems, which may result in a Secure Boot bypass. For the oldstable distribution (bullseye), these problems have been fixed