ALT-PU-2023-2654-1
Package epiphany updated to version 43.1-alt1 for branch sisyphus_mipsel.
Closed vulnerabilities
Published: 2023-02-19
BDU:2023-01753
Уязвимость веб-браузера Epiphany, связанная с недостатками контроля доступа, позволяющая нарушителю раскрыть защищаемую информацию
Severity: HIGH (7.5)
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References:
Published: 2023-02-20
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2023-26081
In Epiphany (aka GNOME Web) through 43.0, untrusted web content can trick users into exfiltrating passwords, because autofill occurs in sandboxed contexts.
Severity: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References:
- https://github.com/google/security-research/security/advisories/GHSA-mhhf-w9xw-pp9x
- https://github.com/google/security-research/security/advisories/GHSA-mhhf-w9xw-pp9x
- https://gitlab.gnome.org/GNOME/epiphany/-/merge_requests/1275
- https://gitlab.gnome.org/GNOME/epiphany/-/merge_requests/1275
- [debian-lts-announce] 20230515 [SECURITY] [DLA 3423-1] epiphany-browser security update
- [debian-lts-announce] 20230515 [SECURITY] [DLA 3423-1] epiphany-browser security update
- FEDORA-2023-26b58f8098
- FEDORA-2023-26b58f8098
- FEDORA-2023-d8d2cd7c58
- FEDORA-2023-d8d2cd7c58