AVG-1293 log

Package webkit2gtk
Status Fixed
Severity Medium
Type arbitrary code execution
Affected 2.28.4-1
Fixed 2.30.1-1
Current 2.46.5-1 [extra]
Ticket None
Created Mon Nov 23 17:08:20 2020
Issue Severity Remote Type Description
CVE-2020-9951 Medium Yes Arbitrary code execution
A use after free issue was found in webkit2gtk before 2.30.0. Processing maliciously crafted web content may have lead to arbitrary code execution.
CVE-2020-9948 Medium Yes Arbitrary code execution
A type confusion issue was found in webkit2gtk before 2.30.0. Processing maliciously crafted web content may have lead to arbitrary code execution.
References
https://webkitgtk.org/security/WSA-2020-0008.html