Lucene search

K

Veracode Vulnerability DatabaseVERACODE:24393

HistoryApr 10, 2020 - 12:53 a.m.

Arbitrary Code Execution

2020-04-1000:53:21

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

11

EPSS

0.006

Percentile

78.9%

webkitgtk is vulnerable to arbitrary code execution. The vulnerability exists as multiple use-after-free flaws were found in WebKit. Malicious web content could cause an application using WebKitGTK+ to crash or, potentially, execute arbitrary code with the privileges of the user running the application.

References

code.google.com/p/chromium/issues/detail?id=60238

googlechromereleases.blogspot.com/2010/11/stable-channel-update.html

lists.fedoraproject.org/pipermail/package-announce/2011-January/052906.html

secunia.com/advisories/42109

secunia.com/advisories/43086

trac.webkit.org/changeset/70517

www.mandriva.com/security/advisories?name=MDVSA-2011:039

www.redhat.com/support/errata/RHSA-2011-0177.html

www.securityfocus.com/bid/45718

www.vupen.com/english/advisories/2011/0216

www.vupen.com/english/advisories/2011/0552

access.redhat.com/errata/RHSA-2011:0177

access.redhat.com/security/updates/classification/#moderate

bugs.webkit.org/show_bug.cgi?id=48281

bugzilla.redhat.com/show_bug.cgi?id=656126

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12174

EPSS

0.006

Percentile

78.9%

Related for VERACODE:24393

cve1 nvd1 prion1 debiancve1 cvelist1 ubuntucve1 nessus9 openvas18 freebsd1 ubuntu1 redhat1 oraclelinux1 fedora2 gentoo1