DSA-5030-1 webkit2gtk -- libwebkit2gtk-4.0-devID: oval:org.secpod.oval:def:77018 | Date: (C)2022-01-10 (M)2023-12-11 |
Class: PATCH | Family: unix |
The following vulnerabilities have been discovered in the webkit2gtk web engine: CVE-2021-30887 Narendra Bhati discovered that processing maliciously crafted web content may lead to unexpectedly unenforced Content Security Policy. CVE-2021-30890 An anonymous researcher discovered that processing maliciously crafted web content may lead to universal cross site scripting.
Product: |
libwebkit2gtk-4.0-dev |