Download
| Alert*
oval:org.secpod.oval:def:1701375
A logic issue was addressed with improved state management. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, Safari 14.0.1, tvOS 14.2, iTunes 12.11 for Windows. Processin ... oval:org.secpod.oval:def:86241 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code or disclose sensitive informat ... oval:org.secpod.oval:def:707874 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:89048092 This update for webkit2gtk3 fixes the following issues: Update to version 2.38.3: - CVE-2022-42856: Fixed a potential arbitrary code execution when processing maliciously crafted web content . - CVE-2022-42852: Fixed disclosure of process memory by improved memory handling. - CVE-2022-42867: Fixed a ... oval:org.secpod.oval:def:86185 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. On successful exploitation, a remote user may be able to cause unexpected app termination or arb ... oval:org.secpod.oval:def:507442 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * webkitgtk: processing maliciously crafted web content may lead to an arbitrary code execution For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ot ... oval:org.secpod.oval:def:507441 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * webkitgtk: processing maliciously crafted web content may lead to an arbitrary code execution For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ot ... oval:org.secpod.oval:def:2500909 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. oval:org.secpod.oval:def:610326 The following vulnerabilities have been discovered in the WPE WebKit web engine: CVE-2022-42852 hazbinhotel discovered that processing maliciously crafted web content may result in the disclosure of process memory. CVE-2022-42856 Clement Lecigne discovered that processing maliciously crafted web con ... oval:org.secpod.oval:def:124815 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. This package contains WebKit2 based WebKitGTK for GTK 3. oval:org.secpod.oval:def:5800019 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * webkitgtk: processing maliciously crafted web content may lead to an arbitrary code execution For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ot ... oval:org.secpod.oval:def:89048113 This update for webkit2gtk3 fixes the following issues: Update to version 2.38.3 : - CVE-2022-42852: Fixed disclosure of process memory by improved memory handling. - CVE-2022-42856: Fixed a potential arbitrary code execution when processing maliciously crafted web content . - CVE-2022-42863: Fixed ... oval:org.secpod.oval:def:610327 The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-42852 hazbinhotel discovered that processing maliciously crafted web content may result in the disclosure of process memory. CVE-2022-42856 Clement Lecigne discovered that processing maliciously crafted web cont ... oval:org.secpod.oval:def:88652 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:4501174 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix: * webkitgtk: processing maliciously crafted web content may lead to an arbitrary code execution For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ot ... oval:org.secpod.oval:def:2600123 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. oval:org.secpod.oval:def:1506330 [2.36.7-1.1] - Add patch for CVE-2022-42856 Resolves: #2153738 oval:org.secpod.oval:def:1506331 [2.36.7-1.1] - Add patch for CVE-2022-42856 Resolves: #2153735 oval:org.secpod.oval:def:124802 WebKitGTK is the port of the WebKit web rendering engine to the GTK platform. oval:org.secpod.oval:def:86206 The host is installed with Apple macOS Ventura version before 13.1 or Apple Safari before 16.2 on Apple Mac OS 12 or Apple Mac OS 11 and is prone to a type confusion vulnerability. A flaw is present in the application, which fails to properly handle crafted web content. Successful exploitation may l ... oval:org.secpod.oval:def:89048089 This update for webkit2gtk3 fixes the following issues: Update to version 2.38.3: - CVE-2022-42856: Fixed a potential arbitrary code execution when processing maliciously crafted web content . - CVE-2022-42852: Fixed disclosure of process memory by improved memory handling. - CVE-2022-42867: Fixed a ... oval:org.secpod.oval:def:88447 The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-42852 hazbinhotel discovered that processing maliciously crafted web content may result in the disclosure of process memory. CVE-2022-42856 Clement Lecigne discovered that processing maliciously crafted web cont ... oval:org.secpod.oval:def:3301372 SUSE Security Update: Security update for webkit2gtk3 oval:org.secpod.oval:def:3301032 SUSE Security Update: Security update for webkit2gtk3 oval:org.secpod.oval:def:89048088 This update for webkit2gtk3 fixes the following issues: Update to version 2.38.3: - CVE-2022-42856: Fixed a potential arbitrary code execution when processing maliciously crafted web content . oval:org.secpod.oval:def:88448 The following vulnerabilities have been discovered in the WPE WebKit web engine: CVE-2022-42852 hazbinhotel discovered that processing maliciously crafted web content may result in the disclosure of process memory. CVE-2022-42856 Clement Lecigne discovered that processing maliciously crafted web con ... |