Vulnerability   
Search   
    Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.705340
Category:Debian Local Security Checks
Title:Debian: Security Advisory (DSA-5340-1)
Summary:The remote host is missing an update for the Debian 'webkit2gtk' package(s) announced via the DSA-5340-1 advisory.
Description:Summary:
The remote host is missing an update for the Debian 'webkit2gtk' package(s) announced via the DSA-5340-1 advisory.

Vulnerability Insight:
The following vulnerabilities have been discovered in the WebKitGTK web engine:

CVE-2022-42826

Francisco Alonso discovered that processing maliciously crafted web content may lead to arbitrary code execution.

CVE-2023-23517

YeongHyeon Choi, Hyeon Park, SeOk JEON, YoungSung Ahn, JunSeo Bae and Dohyun Lee discovered that processing maliciously crafted web content may lead to arbitrary code execution.

CVE-2023-23518

YeongHyeon Choi, Hyeon Park, SeOk JEON, YoungSung Ahn, JunSeo Bae and Dohyun Lee discovered that processing maliciously crafted web content may lead to arbitrary code execution.

For the stable distribution (bullseye), these problems have been fixed in version 2.38.4-2~
deb11u1.

We recommend that you upgrade your webkit2gtk packages.

For the detailed security status of webkit2gtk please refer to its security tracker page at: [link moved to references]

Affected Software/OS:
'webkit2gtk' package(s) on Debian 11.

Solution:
Please install the updated package(s).

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2022-32919
https://support.apple.com/en-us/HT213530
https://support.apple.com/en-us/HT213532
Common Vulnerability Exposure (CVE) ID: CVE-2022-42826
https://security.gentoo.org/glsa/202305-32
https://support.apple.com/en-us/HT213488
https://support.apple.com/en-us/HT213489
https://support.apple.com/en-us/HT213495
Common Vulnerability Exposure (CVE) ID: CVE-2022-46705
https://support.apple.com/en-us/HT213537
http://www.openwall.com/lists/oss-security/2023/11/15/1
Common Vulnerability Exposure (CVE) ID: CVE-2022-46725
https://support.apple.com/en-us/HT213676
Common Vulnerability Exposure (CVE) ID: CVE-2023-23517
https://support.apple.com/en-us/HT213599
https://support.apple.com/en-us/HT213600
https://support.apple.com/en-us/HT213601
https://support.apple.com/en-us/HT213603
https://support.apple.com/en-us/HT213604
https://support.apple.com/en-us/HT213605
https://support.apple.com/en-us/HT213606
https://support.apple.com/en-us/HT213638
Common Vulnerability Exposure (CVE) ID: CVE-2023-23518
CopyrightCopyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2025 E-Soft Inc. All rights reserved.