Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-5867-1.NASL
HistoryFeb 13, 2023 - 12:00 a.m.

Ubuntu 20.04 LTS / 22.04 LTS : WebKitGTK vulnerabilities (USN-5867-1)

2023-02-1300:00:00
Ubuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
27
ubuntu 20.04
ubuntu 22.04
webkitgtk vulnerabilities
gstreamer multimedia playback
codec selection logic
latency handling
mse support
gtk4
mediasession api
mpris
flatpak sandbox
input element controls
web processes
memory handling
nessus scanner

0.005 Low

EPSS

Percentile

75.8%

JSON

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5867-1 advisory.

    • Improve GStreamer multimedia playback across the board with improved codec selection logic, better handling of latency, and improving frame discard to avoid audio/video desynchronization, among other fixes. * Disable HLS media playback by default, which makes web sites use MSE instead. If needed WEBKIT_GST_ENABLE_HLS_SUPPORT=1 can be set in the environment to enable it back. * Disable threaded rendering in GTK4 builds by default, as it was causing crashes. * Fix MediaSession API not showing artwork images. * Fix MediaSession MPRIS usage when running inside a Flatpak sandbox. * Fix input element controls to correctly scale when applying a zoom factor different than the default. * Fix leakage of Web processes in certain situations. * Fix several crashes and rendering issues. * Security fixes:
      CVE-2023-23517, CVE-2023-23518, CVE-2022-42826, and many additional security issues (CVE-2022-42826)

  • The issue was addressed with improved memory handling. (CVE-2023-23517, CVE-2023-23518)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-5867-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(171388);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/20");

  script_cve_id("CVE-2022-42826", "CVE-2023-23517", "CVE-2023-23518");
  script_xref(name:"USN", value:"5867-1");

  script_name(english:"Ubuntu 20.04 LTS / 22.04 LTS : WebKitGTK vulnerabilities (USN-5867-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as
referenced in the USN-5867-1 advisory.

  -  * Improve GStreamer multimedia playback across the board with improved codec selection logic, better
    handling of latency, and improving frame discard to avoid audio/video desynchronization, among other
    fixes.  * Disable HLS media playback by default, which makes web sites use MSE instead. If needed
    WEBKIT_GST_ENABLE_HLS_SUPPORT=1 can be set in the environment to enable it back.  * Disable threaded
    rendering in GTK4 builds by default, as it was causing crashes.  * Fix MediaSession API not showing
    artwork images.  * Fix MediaSession MPRIS usage when running inside a Flatpak sandbox.  * Fix input
    element controls to correctly scale when applying a zoom factor different than the default.  * Fix leakage
    of Web processes in certain situations.  * Fix several crashes and rendering issues.  * Security fixes:
    CVE-2023-23517, CVE-2023-23518, CVE-2022-42826, and many additional security issues (CVE-2022-42826)

  - The issue was addressed with improved memory handling. (CVE-2023-23517, CVE-2023-23518)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-5867-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-23518");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/01/24");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/02/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/02/13");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.1-0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.1-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37-gtk2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.1-0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.1-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:webkit2gtk-driver");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('20.04' >< os_release || '22.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 20.04 / 22.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '20.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.38.4-0ubuntu0.20.04.2'},
    {'osver': '20.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.38.4-0ubuntu0.20.04.2'},
    {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.38.4-0ubuntu0.20.04.2'},
    {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.38.4-0ubuntu0.20.04.2'},
    {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.38.4-0ubuntu0.20.04.2'},
    {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.38.4-0ubuntu0.20.04.2'},
    {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37-gtk2', 'pkgver': '2.38.4-0ubuntu0.20.04.2'},
    {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.38.4-0ubuntu0.20.04.2'},
    {'osver': '20.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.38.4-0ubuntu0.20.04.2'},
    {'osver': '22.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.1', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'gir1.2-webkit2-4.1', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'libjavascriptcoregtk-4.1-0', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'libjavascriptcoregtk-4.1-dev', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'libwebkit2gtk-4.1-0', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'libwebkit2gtk-4.1-dev', 'pkgver': '2.38.4-0ubuntu0.22.04.1'},
    {'osver': '22.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.38.4-0ubuntu0.22.04.1'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'gir1.2-javascriptcoregtk-4.0 / gir1.2-javascriptcoregtk-4.1 / etc');
}
VendorProductVersionCPE
canonicalubuntu_linux20.04cpe:/o:canonical:ubuntu_linux:20.04:-:lts
canonicalubuntu_linux22.04cpe:/o:canonical:ubuntu_linux:22.04:-:lts
canonicalubuntu_linuxgir1.2-javascriptcoregtk-4.0p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0
canonicalubuntu_linuxgir1.2-javascriptcoregtk-4.1p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.1
canonicalubuntu_linuxgir1.2-webkit2-4.0p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0
canonicalubuntu_linuxgir1.2-webkit2-4.1p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.1
canonicalubuntu_linuxlibjavascriptcoregtk-4.0-18p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18
canonicalubuntu_linuxlibjavascriptcoregtk-4.0-binp-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin
canonicalubuntu_linuxlibjavascriptcoregtk-4.0-devp-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev
canonicalubuntu_linuxlibjavascriptcoregtk-4.1-0p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.1-0
Rows per page:
1-10 of 171

Related

openvas 17
fedora 2
nessus 25
osv 6
debian 3
ubuntu 1
mageia 1
apple 11
prion 3
cvelist 3
debiancve 3
nvd 3
cve 3
ubuntucve 3
redhatcve 3
oraclelinux 2
almalinux 2
redhat 2
gentoo 1
amazon 1
openvas
openvas
Debian: Security Advisory (DLA-3308-1)
2023-02-07 00:00:00
Mageia: Security Advisory (MGASA-2023-0047)
2023-03-28 00:00:00
Ubuntu: Security Advisory (USN-5867-1)
2023-02-14 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: webkitgtk-2.38.4-1.fc37
2023-02-09 09:14:49
[SECURITY] Fedora 36 Update: webkit2gtk3-2.38.5-1.fc36
2023-02-22 11:10:40
nessus
nessus
Debian DLA-3308-1 : webkit2gtk - LTS security update
2023-02-07 00:00:00
Debian DSA-5340-1 : webkit2gtk - security update
2023-02-07 00:00:00
Debian DSA-5341-1 : wpewebkit - security update
2023-02-07 00:00:00
osv
osv
webkit2gtk - security update
2023-02-06 00:00:00
webkit2gtk vulnerabilities
2023-02-13 12:20:41
webkit2gtk - security update
2023-02-06 00:00:00
debian
debian
[SECURITY] [DSA 5341-1] wpewebkit security update
2023-02-06 18:20:32
[SECURITY] [DLA 3308-1] webkit2gtk security update
2023-02-06 19:03:50
[SECURITY] [DSA 5340-1] webkit2gtk security update
2023-02-06 18:18:29
ubuntu
ubuntu
WebKitGTK vulnerabilities
2023-02-13 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerability
2023-02-15 01:43:23
apple
apple
About the security content of Safari 16.3
2023-01-23 00:00:00
About the security content of Safari 16.3
2023-02-13 00:00:00
About the security content of macOS Big Sur 11.7.3
2023-01-23 00:00:00
prion
prion
Design/Logic Flaw
2023-02-27 20:15:00
Code injection
2023-02-27 20:15:00
Code injection
2023-02-27 20:15:00
cvelist
cvelist
CVE-2022-42826
2023-02-27 00:00:00
CVE-2023-23517
2023-02-27 00:00:00
CVE-2023-23518
2023-02-27 00:00:00
debiancve
debiancve
CVE-2022-42826
2023-02-27 20:15:12
CVE-2023-23517
2023-02-27 20:15:14
CVE-2023-23518
2023-02-27 20:15:14
nvd
nvd
CVE-2022-42826
2023-02-27 20:15:12
CVE-2023-23518
2023-02-27 20:15:14
CVE-2023-23517
2023-02-27 20:15:14
cve
cve
CVE-2022-42826
2023-02-27 20:15:12
CVE-2023-23518
2023-02-27 20:15:14
CVE-2023-23517
2023-02-27 20:15:14
ubuntucve
ubuntucve
CVE-2022-42826
2023-02-03 00:00:00
CVE-2023-23518
2023-02-03 00:00:00
CVE-2023-23517
2023-02-03 00:00:00
redhatcve
redhatcve
CVE-2023-23518
2023-02-07 11:26:22
CVE-2022-42826
2023-02-07 11:26:03
CVE-2023-23517
2023-02-07 11:26:12
oraclelinux
oraclelinux
webkit2gtk3 security and bug fix update
2023-05-15 00:00:00
webkit2gtk3 security and bug fix update
2023-05-24 00:00:00
almalinux
almalinux
Important: webkit2gtk3 security and bug fix update
2023-05-16 00:00:00
Important: webkit2gtk3 security and bug fix update
2023-05-09 00:00:00
redhat
redhat
(RHSA-2023:2834) Important: webkit2gtk3 security and bug fix update
2023-05-16 05:55:57
(RHSA-2023:2256) Important: webkit2gtk3 security and bug fix update
2023-05-09 05:05:11
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2023-05-30 00:00:00
amazon
amazon
Important: webkitgtk4
2023-06-07 23:52:00

0.005 Low

EPSS

Percentile

75.8%

JSON
Related for UBUNTU_USN-5867-1.NASL
openvas17fedora2nessus25osv6debian3ubuntu1mageia1apple11prion3cvelist3debiancve3nvd3cve3ubuntucve3redhatcve3oraclelinux2almalinux2redhat2gentoo1amazon1