Download
| Alert*
oval:org.secpod.oval:def:1701375
A logic issue was addressed with improved state management. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, Safari 14.0.1, tvOS 14.2, iTunes 12.11 for Windows. Processin ... oval:org.secpod.oval:def:85056 The host is installed with Apple Safari before 16.1 on Apple Mac OS 12 or Apple Mac OS 11 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle the correctness issue. Successful exploitation allows an attacker to process malicio ... oval:org.secpod.oval:def:85001 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code or disclose sensitive informat ... oval:org.secpod.oval:def:86530 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:3301369 SUSE Security Update: Security update for webkit2gtk3 oval:org.secpod.oval:def:3300676 SUSE Security Update: Security update for webkit2gtk3 oval:org.secpod.oval:def:2600201 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. oval:org.secpod.oval:def:507641 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * webkitgtk: use-after-free issue leading to arbitrary code execution * webkitgtk: memory corruption issue leading to arbitrary code execution * webkitgtk: memory corruption issue leading to arbitr ... oval:org.secpod.oval:def:89047979 Security fixes: - CVE-2022-32888: Fixed possible arbitrary code execution via maliciously crafted web content . - CVE-2022-32923: Fixed possible information leak via maliciously crafted web content . - CVE-2022-42799: Fixed user interface spoofing when visiting a malicious website . - CVE-2022-42823 ... oval:org.secpod.oval:def:1506677 [2.38.5-1] - Update to 2.38.5 Related: #2127467 [2.38.4-1] - Update to 2.38.4 Related: #2127467 [2.38.3-1] - Update to 2.38.3 Related: #2127467 [2.38.2-1] - Update to 2.38.2 Related: #2127467 [2.38.1-2] - Fix use with aarch64 64 KiB page size Related: #2127467 [2.38.1-1] - Update to 2.38.1 Resolves: ... oval:org.secpod.oval:def:89047942 Security fixes: - CVE-2022-32888: Fixed possible arbitrary code execution via maliciously crafted web content . - CVE-2022-32923: Fixed possible information leak via maliciously crafted web content . - CVE-2022-42799: Fixed user interface spoofing when visiting a malicious website . - CVE-2022-42823 ... oval:org.secpod.oval:def:1506792 [2.38.5-1] - Update to 2.38.5 Related: #2127468 [2.38.4-1] - Update to 2.38.4 Related: #2127468 [2.38.3-1] - Update to 2.38.3 Related: #2127468 [2.38.2-1] - Update to 2.38.2 Related: #2127468 [2.38.1-2] - Fix crashes on aarch64 Enable WPE renderer Related: #2127468 [2.38.1-1] - Update to 2.38.1 Rela ... oval:org.secpod.oval:def:89047987 Security fixes: - CVE-2022-32888: Fixed possible arbitrary code execution via maliciously crafted web content . - CVE-2022-32923: Fixed possible information leak via maliciously crafted web content . - CVE-2022-42799: Fixed user interface spoofing when visiting a malicious website . - CVE-2022-42823 ... oval:org.secpod.oval:def:507738 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * webkitgtk: use-after-free issue leading to arbitrary code execution * webkitgtk: memory corruption issue leading to arbitrary code execution * webkitgtk: memory corruption issue leading to arbitr ... oval:org.secpod.oval:def:89048002 Security fixes: - CVE-2022-32888: Fixed possible arbitrary code execution via maliciously crafted web content . - CVE-2022-32923: Fixed possible information leak via maliciously crafted web content . - CVE-2022-42799: Fixed user interface spoofing when visiting a malicious website . - CVE-2022-42823 ... oval:org.secpod.oval:def:2501076 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. oval:org.secpod.oval:def:707814 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:85969 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code, cause denial of service or di ... |