AVG-1722 log

Package wpewebkit
Status Fixed
Severity High
Type multiple issues
Affected 2.30.5-1
Fixed 2.30.6-1
Current 2.34.2-1 [extra]
Ticket None
Created Mon Mar 22 20:01:18 2021
Issue Severity Remote Type Description
CVE-2021-1870 High Yes Arbitrary code execution
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. A remote attacker may be able to cause arbitrary code execution....
CVE-2021-1801 Medium Yes Sandbox escape
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. Maliciously crafted web content may violate iframe sandboxing policy.
CVE-2021-1799 Medium Yes Access restriction bypass
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. A malicious website may be able to access restricted ports on...
CVE-2021-1789 Medium Yes Arbitrary code execution
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. Processing maliciously crafted web content may lead to arbitrary...
CVE-2021-1765 Medium Yes Sandbox escape
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. Maliciously crafted web content may violate iframe sandboxing policy.
CVE-2020-29623 Medium No Information disclosure
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. “Clear History and Website Data” did not clear the history in some...
CVE-2020-27918 Medium Yes Arbitrary code execution
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. Processing maliciously crafted web content may lead to arbitrary...
Date Advisory Package Type
25 Mar 2021 ASA-202103-25 wpewebkit multiple issues