Test ID:	1.3.6.1.4.1.25623.1.0.704558
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-4558-1)
Summary:	The remote host is missing an update for the Debian 'webkit2gtk' package(s) announced via the DSA-4558-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'webkit2gtk' package(s) announced via the DSA-4558-1 advisory. Vulnerability Insight: Several vulnerabilities have been discovered in the webkit2gtk web engine: CVE-2019-8625 Sergei Glazunov discovered that maliciously crafted web content may lead to universal cross site scripting. CVE-2019-8720 Wen Xu discovered that maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8769 Pierre Reimertz discovered that visiting a maliciously crafted website may reveal browsing history. CVE-2019-8771 Eliya Stein discovered that maliciously crafted web content may violate iframe sandboxing policy. For the stable distribution (buster), these problems have been fixed in version 2.26.1-3~ deb10u1. We recommend that you upgrade your webkit2gtk packages. For the detailed security status of webkit2gtk please refer to its security tracker page at: [link moved to references] Affected Software/OS: 'webkit2gtk' package(s) on Debian 10. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2019-8625 https://security.gentoo.org/glsa/202003-22 https://support.apple.com/HT210635 https://support.apple.com/HT210636 https://support.apple.com/HT210637 Common Vulnerability Exposure (CVE) ID: CVE-2019-8710 https://support.apple.com/HT210727 Common Vulnerability Exposure (CVE) ID: CVE-2019-8720 https://bugzilla.redhat.com/show_bug.cgi?id=1876611 https://webkitgtk.org/security/WSA-2019-0005.html Common Vulnerability Exposure (CVE) ID: CVE-2019-8743 https://support.apple.com/HT210724 Common Vulnerability Exposure (CVE) ID: CVE-2019-8764 Common Vulnerability Exposure (CVE) ID: CVE-2019-8766 Common Vulnerability Exposure (CVE) ID: CVE-2019-8769 https://support.apple.com/HT210634 Common Vulnerability Exposure (CVE) ID: CVE-2019-8771 https://support.apple.com/en-us/HT210605 https://support.apple.com/en-us/HT210606 Common Vulnerability Exposure (CVE) ID: CVE-2019-8782 https://support.apple.com/HT210721 https://support.apple.com/HT210723 https://support.apple.com/HT210725 https://support.apple.com/HT210726 Common Vulnerability Exposure (CVE) ID: CVE-2019-8783 https://support.apple.com/HT210728 Common Vulnerability Exposure (CVE) ID: CVE-2019-8808 Common Vulnerability Exposure (CVE) ID: CVE-2019-8811 Common Vulnerability Exposure (CVE) ID: CVE-2019-8813 Common Vulnerability Exposure (CVE) ID: CVE-2019-8815 Common Vulnerability Exposure (CVE) ID: CVE-2019-8816 Common Vulnerability Exposure (CVE) ID: CVE-2019-8819 Common Vulnerability Exposure (CVE) ID: CVE-2019-8820 Common Vulnerability Exposure (CVE) ID: CVE-2019-8823 Common Vulnerability Exposure (CVE) ID: CVE-2021-30666 https://support.apple.com/en-us/HT212341 Common Vulnerability Exposure (CVE) ID: CVE-2021-30761 https://support.apple.com/en-us/HT212548
Copyright	Copyright (C) 2019 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.