AVG-2483 log

Package webkit2gtk
Status Fixed
Severity Medium
Type multiple issues
Affected 2.32.4-1
Fixed 2.34.1-1
Current 2.36.2-1 [extra]
Ticket None
Created Wed Oct 20 20:17:28 2021
Issue Severity Remote Type Description
CVE-2021-42762 Medium Yes Sandbox escape
BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes...
CVE-2021-30851 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.34.0. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30846 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.34.0. Processing maliciously crafted web content may lead to arbitrary code execution.
Date Advisory Package Type
29 Oct 2021 ASA-202110-9 webkit2gtk multiple issues