webkit2gtk3 security update

2024-01-0904:07:10

Rockylinux Product Errata

errata.rockylinux.org

webkitgtk

security update

remote code execution

cvss

vulnerability

cve

rocky linux 8

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

Low

EPSS

0.002

Percentile

54.8%

JSON

An update is available for webkit2gtk3.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.

Security Fix(es):

webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
rocky8aarch64webkit2gtk3< 2.40.5-1.el8_9.1webkit2gtk3-0:2.40.5-1.el8_9.1.aarch64.rpm
rocky8i686webkit2gtk3< 2.40.5-1.el8_9.1webkit2gtk3-0:2.40.5-1.el8_9.1.i686.rpm
rocky8x86_64webkit2gtk3< 2.40.5-1.el8_9.1webkit2gtk3-0:2.40.5-1.el8_9.1.x86_64.rpm
rocky8aarch64webkit2gtk3-debuginfo< 2.40.5-1.el8_9.1webkit2gtk3-debuginfo-0:2.40.5-1.el8_9.1.aarch64.rpm
rocky8i686webkit2gtk3-debuginfo< 2.40.5-1.el8_9.1webkit2gtk3-debuginfo-0:2.40.5-1.el8_9.1.i686.rpm
rocky8x86_64webkit2gtk3-debuginfo< 2.40.5-1.el8_9.1webkit2gtk3-debuginfo-0:2.40.5-1.el8_9.1.x86_64.rpm
rocky8aarch64webkit2gtk3-debugsource< 2.40.5-1.el8_9.1webkit2gtk3-debugsource-0:2.40.5-1.el8_9.1.aarch64.rpm
rocky8i686webkit2gtk3-debugsource< 2.40.5-1.el8_9.1webkit2gtk3-debugsource-0:2.40.5-1.el8_9.1.i686.rpm
rocky8x86_64webkit2gtk3-debugsource< 2.40.5-1.el8_9.1webkit2gtk3-debugsource-0:2.40.5-1.el8_9.1.x86_64.rpm
rocky8aarch64webkit2gtk3-devel< 2.40.5-1.el8_9.1webkit2gtk3-devel-0:2.40.5-1.el8_9.1.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
rocky	8	aarch64	webkit2gtk3	< 2.40.5-1.el8_9.1	webkit2gtk3-0:2.40.5-1.el8_9.1.aarch64.rpm
rocky	8	i686	webkit2gtk3	< 2.40.5-1.el8_9.1	webkit2gtk3-0:2.40.5-1.el8_9.1.i686.rpm
rocky	8	x86_64	webkit2gtk3	< 2.40.5-1.el8_9.1	webkit2gtk3-0:2.40.5-1.el8_9.1.x86_64.rpm
rocky	8	aarch64	webkit2gtk3-debuginfo	< 2.40.5-1.el8_9.1	webkit2gtk3-debuginfo-0:2.40.5-1.el8_9.1.aarch64.rpm
rocky	8	i686	webkit2gtk3-debuginfo	< 2.40.5-1.el8_9.1	webkit2gtk3-debuginfo-0:2.40.5-1.el8_9.1.i686.rpm
rocky	8	x86_64	webkit2gtk3-debuginfo	< 2.40.5-1.el8_9.1	webkit2gtk3-debuginfo-0:2.40.5-1.el8_9.1.x86_64.rpm
rocky	8	aarch64	webkit2gtk3-debugsource	< 2.40.5-1.el8_9.1	webkit2gtk3-debugsource-0:2.40.5-1.el8_9.1.aarch64.rpm
rocky	8	i686	webkit2gtk3-debugsource	< 2.40.5-1.el8_9.1	webkit2gtk3-debugsource-0:2.40.5-1.el8_9.1.i686.rpm
rocky	8	x86_64	webkit2gtk3-debugsource	< 2.40.5-1.el8_9.1	webkit2gtk3-debugsource-0:2.40.5-1.el8_9.1.x86_64.rpm
rocky	8	aarch64	webkit2gtk3-devel	< 2.40.5-1.el8_9.1	webkit2gtk3-devel-0:2.40.5-1.el8_9.1.aarch64.rpm