Search CVE reports
121 – 130 of 652 results
CVE-2021-45481
Medium prioritySome fixes available 7 of 25
In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Fixed | Fixed | Fixed | Ignored | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |
CVE-2021-30836
Medium prioritySome fixes available 3 of 22
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing a maliciously crafted audio file may disclose restricted memory.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Not affected | Not affected | Fixed | Fixed | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |
CVE-2021-30823
Medium prioritySome fixes available 8 of 28
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 14.8 and iPadOS 14.8, tvOS 15, Safari 15, watchOS 8. An attacker in a privileged network position may be able to bypass HSTS.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Fixed | Fixed | Fixed | Ignored | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |
CVE-2021-30818
Medium prioritySome fixes available 8 of 28
A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, iOS 15 and iPadOS 15, Safari 15, watchOS 8. Processing maliciously crafted web content may lead to...
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Fixed | Fixed | Fixed | Ignored | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |
CVE-2021-30809
Medium prioritySome fixes available 3 of 22
A use after free issue was addressed with improved memory management. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to arbitrary code execution.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Not affected | Not affected | Fixed | Fixed | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |
CVE-2021-30851
Medium prioritySome fixes available 8 of 28
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Fixed | Fixed | Fixed | Ignored | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |
CVE-2021-30846
Medium prioritySome fixes available 8 of 28
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing maliciously crafted web content may lead to...
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Fixed | Fixed | Fixed | Ignored | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |
CVE-2021-42762
Medium prioritySome fixes available 8 of 27
BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by...
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Fixed | Fixed | Fixed | Not affected | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |
CVE-2021-30849
Medium prioritySome fixes available 3 of 22
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, watchOS 8, Safari 15, tvOS 15, iOS 15 and iPadOS 15, iTunes 12.12 for Windows. Processing maliciously...
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Not affected | Not affected | Fixed | Fixed | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |
CVE-2021-30848
Medium prioritySome fixes available 3 of 22
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored | Ignored |
| webkit2gtk | Not affected | Not affected | Fixed | Fixed | Ignored |
| webkitgtk | Not in release | Not in release | Not in release | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | Not in release | Not in release |