An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, tvOS 17.4. A maliciously crafted webpage may be able to fingerprint the user.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | webkit2gtk | < 2.44.1-1~deb12u1 | webkit2gtk_2.44.1-1~deb12u1_all.deb |
Debian | 11 | all | webkit2gtk | < 2.44.1-1~deb11u1 | webkit2gtk_2.44.1-1~deb11u1_all.deb |
Debian | 999 | all | webkit2gtk | < 2.44.0-1 | webkit2gtk_2.44.0-1_all.deb |
Debian | 13 | all | webkit2gtk | < 2.44.0-1 | webkit2gtk_2.44.0-1_all.deb |
Debian | 12 | all | wpewebkit | <= 2.38.6-1 | wpewebkit_2.38.6-1_all.deb |
Debian | 11 | all | wpewebkit | <= 2.38.6-1~deb11u1 | wpewebkit_2.38.6-1~deb11u1_all.deb |
Debian | 999 | all | wpewebkit | < 2.44.1-1 | wpewebkit_2.44.1-1_all.deb |
Debian | 13 | all | wpewebkit | < 2.44.1-1 | wpewebkit_2.44.1-1_all.deb |