ALT-PU-2022-7882-1

Package update libwebkitgtk4 in branch sisyphus

Version2.34.4-alt1

Published2022-01-21

Max severityHIGH

Severity:

Closed issues (2)

HIGH7.8

Уязвимость операционных систем tvOS, iOS, macOS, iPadOS, watchOS и браузера Safari, связанная с использованием памяти после её освобождения, позволяющая нарушителю выполнить произвольный код

Published: 2022-01-12Modified: 2026-05-06

CVSS 3.xHIGH 7.8

CVSS:3.x/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS 2.0MEDIUM 6.9

CVSS:2.0/AV:L/AC:M/Au:N/C:C/I:C/A:C

References

CVE-2021-30952

HIGH7.8

An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution.

Published: 2021-08-24Modified: 2026-03-06

CVSS 2.0MEDIUM 6.8

CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS 3.xHIGH 7.8

CVSS:3.x/CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References