Lucene search
UbuntuUSN-5893-1HistoryFeb 27, 2023 - 12:00 a.m.
WebKitGTK vulnerabilities
2023-02-2700:00:00
ubuntu.com
41
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.1 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.0%
Releases
- Ubuntu 22.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Packages
- webkit2gtk - Web content engine library for GTK+
Details
Several security issues were discovered in the WebKitGTK Web and JavaScript
engines. If a user were tricked into viewing a malicious website, a remote
attacker could exploit a variety of issues related to web browser security,
including cross-site scripting attacks, denial of service attacks, and
arbitrary code execution.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 22.10 | noarch | libwebkit2gtk-5.0-0 | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | gir1.2-javascriptcoregtk-4.0 | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | gir1.2-javascriptcoregtk-4.1 | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | gir1.2-javascriptcoregtk-5.0 | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | gir1.2-webkit2-4.0 | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | gir1.2-webkit2-4.1 | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | gir1.2-webkit2-5.0 | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | libjavascriptcoregtk-4.0-18 | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | libjavascriptcoregtk-4.0-18-dbgsym | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | libjavascriptcoregtk-4.0-bin | <Β 2.38.5-0ubuntu0.22.10.1 | UNKNOWN |
References
Related
osv
osv
Important: webkit2gtk3 security update
2023-02-27 23:09:34
Important: webkit2gtk3 security update
2023-02-22 00:00:00
webkit2gtk vulnerabilities
2023-02-27 12:51:26
nessus
nessus
AlmaLinux 8 : webkit2gtk3 (ALSA-2023:0902)
2023-02-23 00:00:00
Debian DLA-3320-1 : webkit2gtk - LTS security update
2023-02-21 00:00:00
Rocky Linux 8 : webkit2gtk3 (RLSA-2023:0902)
2023-02-28 00:00:00
debian
debian
[SECURITY] [DSA 5351-1] webkit2gtk security update
2023-02-16 23:21:08
[SECURITY] [DLA 3320-1] webkit2gtk security update
2023-02-17 09:14:34
[SECURITY] [DSA 5352-1] wpewebkit security update
2023-02-16 23:22:47
attackerkb
attackerkb
CVE-2023-23529
2023-02-27 00:00:00
almalinux
almalinux
Important: webkit2gtk3 security update
2023-02-22 00:00:00
Important: webkit2gtk3 security update
2023-02-22 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5893-1)
2023-02-28 00:00:00
Debian: Security Advisory (DSA-5351-1)
2023-02-18 00:00:00
Apple Safari Code Execution Vulnerability (HT213638)
2023-02-16 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: webkitgtk-2.38.5-1.fc37
2023-02-18 01:19:26
[SECURITY] Fedora 36 Update: webkit2gtk3-2.38.5-1.fc36
2023-02-22 11:10:40
debiancve
debiancve
CVE-2023-23529
2023-02-27 20:15:14
oraclelinux
oraclelinux
webkit2gtk3 security update
2023-02-22 00:00:00
webkit2gtk3 security update
2023-02-22 00:00:00
cvelist
cvelist
CVE-2023-23529
2023-02-27 00:00:00
ubuntucve
ubuntucve
CVE-2023-23529
2023-02-15 00:00:00
rocky
rocky
webkit2gtk3 security update
2023-02-27 23:09:34
webkit2gtk3 security update
2023-02-27 23:08:45
thn
thn
Apple Issues Urgent Security Update for Older iOS and iPadOS Models
2023-03-28 03:41:00
β‘Top Cybersecurity News Stories This Week β Cybersecurity Newsletter
2023-02-17 13:16:00
redhatcve
redhatcve
CVE-2023-23529
2023-02-15 07:29:57
prion
prion
Type confusion
2023-02-27 20:15:00
redhat
redhat
(RHSA-2023:0903) Important: webkit2gtk3 security update
2023-02-22 12:48:11
(RHSA-2023:0902) Important: webkit2gtk3 security update
2023-02-22 12:48:08
veracode
veracode
Arbitrary Code Execution
2023-03-07 00:47:39
cisa_kev
cisa_kev
Apple Multiple Products WebKit Type Confusion Vulnerability
2023-02-14 00:00:00
nvd
nvd
CVE-2023-23529
2023-02-27 20:15:14
mageia
mageia
Updated webkit2 packages fix security vulnerability
2023-02-21 00:25:36
hivepro
hivepro
Apple Addressed A Zero-day Vulnerability With An Emergency Security Update
2023-02-14 10:51:49
cve
cve
CVE-2023-23529
2023-02-27 20:15:14
apple
apple
About the security content of Safari 16.3
2023-02-13 00:00:00
About the security content of iOS 16.3.1 and iPadOS 16.3.1
2023-02-13 00:00:00
About the security content of macOS Ventura 13.2.1
2023-02-13 00:00:00
malwarebytes
malwarebytes
Update now! Apple fixes actively exploited vulnerability and introduces new features
2023-03-30 06:00:00
Update now! Apple patches vulnerabilities in MacOS and iOS
2023-02-15 02:00:00
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2023-05-30 00:00:00
amazon
amazon
Important: webkitgtk4
2023-06-07 23:52:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.1 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.0%
Related for USN-5893-1